About the author
Christian Stottmeister is a technical projectmanager responsible for large website setups with a personal interest in security, web technology and projectmanagement issues. Contact information and more details about Stotti can be found here.
@stottiblog
- @amcgowanca @nimbleassistant Wordpress passwords are NOT hashed using MD5. See http://bit.ly/BbmHB to generate a new pass. Twitter 15 hours ago
- Got a custom #apache webserver for my website from @eleven2 within a few days. Support response took only minutes. Great! Twitter 2010/03/08
- Collocated colums in Tweetdeck prove it: there are way more tweets containing #drupal than #typo3. Does that mean something? Twitter 2010/03/05
- Thanks for the feature! RT @mushy99: How to crack MD5 passwords online: http://bit.ly/axsbH7 Twitter 2010/03/05
- @Medienkombinat Is this going to be in the #TYPO3 TER? How many pages can be indexed? Did you benchmark? Twitter 2010/03/04
-
RSS Links
Most popular posts of last month
Tag Archives: md5
New Wordpress password hasher tool
This time just a quick post as I am in a hurry. Ever wondered how to change your Wordpress password in case you have forgotten it? In early versions Wordpress used the MD5 hashing algorithm to “encrypt” the passwords of a user. Nowadays Wordpress uses the Portable PHP password hashing framework (PHPASS) instead of MD5 [...]
Posted in hands off! this is my stuff, security & privacy Also tagged cipher, hashsum, password, wordpress 9 Comments
How to crack MD5 passwords with John the Ripper – a live example exploiting TYPO3
Earlier I told you how to crack MD5 passwords in general. This article tells how to get the passwords out of a TYPO3 installation, which are MD5-hashed, and crack them using John the Ripper.
Preparations step 1: lurk the data!
Okay, assuming that you’re an TYPO3 administrator that wants to check the password strength of your backend [...]
MD5 and SHA1 encoder plugins for major browsers
As already announced at the site itself, the MD5 and SHA1 encoders at mainframe8 support the use of custom browser search engines for quite a while now. This means you can MD5/SHA1 encode strings directly from the browser!
Technical background
We don’t rely on the old Sherlock standard but used the up-to-date OpenSearch definition. Sherlock has been [...]
Posted in hands off! this is my stuff, my beloved code, world wide webtech Also tagged cipher, encoding, mainframe8 Leave a comment
List of cracked MD5 passwords
This article provides a list to publicly available rainbow tables of MD5 hashsums and their plaintext counterparts.
Boards.ie Forums have been hacked – don’t panic!