Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

DarkBASIC Professional Discussion / creating NT and LM hashes

Author
Message
SH4773R
16
Years of Service
User Offline
Joined: 18th Jan 2010
Location: AMERICA!!!
Posted: 7th May 2011 07:08
I'm working on a project that uses hashes, it needs to support as many as possible. NT and LM are pretty common hash types, does anyone know of a .dll to create them?

I have looked here: http://www.matrix1.demon.co.uk/Matrix1Utils_Help/Matrix1Util_27_index.html

but it does not include any major hash types other than MD5 and MD4 witch are checksums, not encryption hashes


My software never has bugs, it just develops random features.
C4: silly putty for men.
IanM
Retired Moderator
23
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 7th May 2011 23:32
LM is a hash, but because of weaknesses in it's implementation, it is very easy to get the password from the hash - consider it insecure and broken.
NT is also a hash, but it's based on the outdated and provably broken MD4 hashing method - it was broken at one point as has since been improved. How secure it really is right now is anyones guess.

Quote: "MD5 and MD4 witch are checksums, not encryption hashes"

MD5 and MD4 are definitely hashes, despite their weaknesses. In fact, every function in that plug-in, except for the CRC functions, are hashes.

Hashes are one way, encryption is reversible.
I don't know what 'encryption hash' means, but did you mean Cryptographic hash? In that case, all of the functions qualify as that (admittedly at widely different levels of security).

SH4773R
16
Years of Service
User Offline
Joined: 18th Jan 2010
Location: AMERICA!!!
Posted: 8th May 2011 06:02 Edited at: 8th May 2011 06:03
Quote: "Cryptographic hash"


Yeah thats what I meant, but you have not really answered my question, is there a .dll?

The main reason that I want to know how to calculate NT and LM is microsoft uses them in winxp and win7, not that that gives away the purpose of my program at all


My software never has bugs, it just develops random features.
C4: silly putty for men.
IanM
Retired Moderator
23
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 8th May 2011 14:33
LM uses the DES encryption method - I don't provide encryption (I had plans, but dropped them). Doesn't matter really though as LM is completely cracked.

NT used MD4 hashing on a little-endian unicode password. You can use that by converting your ascii password to unicode, then MD4'ing it.

There's also the NTLM protocol which provides 2 method - again one uses DES, but the other uses MD5, but beyond that I don't know much about them.

TBH, I thing you're posting your questions in completely the wrong site - I don't think we have any real security people here, and I'd argue that DBPro is NOT the right language to use for this stuff anyway.

Brendy boy
20
Years of Service
User Offline
Joined: 17th Jul 2005
Location: Croatia
Posted: 8th May 2011 16:22
Quote: "Yeah thats what I meant, but you have not really answered my question, is there a .dll?"

I wrote a program for encryption that uses AES, MD5 and RSA cryptographic algorithms that can probably be easily converted to a plugin. What cryptographic algorithms you had on your mind?

SH4773R
16
Years of Service
User Offline
Joined: 18th Jan 2010
Location: AMERICA!!!
Posted: 8th May 2011 20:44
well I don't want to make you feel like you have to make anything for me, but here are the hashes I hoped to support:




My software never has bugs, it just develops random features.
C4: silly putty for men.

Login to post a reply

Server time is: 2026-07-11 02:36:53
Your offset time is: 2026-07-11 02:36:53