Hash-Extension-Bruter

Bruteforce secret length in hash extensions attack

Posted by 0xMohammed on September 12, 2020 · 1 min read

Hash-Extender-Bruter

Hash-Extender-Bruter is a tool in python to bruteforce Hash-extender length and send back cookie to website

Table of Contents

Features

  1. auto detect hashes type and check if they are vulnerable
  2. send the new generated signatures to website and exclude results that contains words in resfilter option

Installation

  1. git clone https://github.com/0xMohammed/Hash-Extender-Bruter.git
  2. cd Hash-Extender-Bruter
  3. mv ./hash-extender /usr/bin
  4. pip3 install -r requirements.txt
  5. chmod +x ./Hash-Extender-bruter.py

Usage

  1. -h : show help menu
  2. -d : the original data i.e. user=demo
  3. -s : signature (hash)
  4. -a : data to add i.e. user=admin
  5. -r : bad word i.e. 'wrong signature'

Hash-Extension-Bruter Usage

Refrences

Length_extension_attack
SHA1 length extension attack on the Secure Filesystem
MD5 length extension and Blind SQL Injection - BruCON CTF part 3