Today we have moved on to Hashing Basics which as the name entails a room on hashing.
We run though insecure password storage, weak hashing algorithms and also the story of rockyou.txt (& the subsequent history of the company Rockyou which had a data breach where the password list came from ‘qwerty’).
In the module we use hexdump, md5sum sha256sum for various files within the box to pull data and hashes.
The room also asks the user to do some research on items like “What is the hash size in yescrypt?” & What hashing algorithm is used in Cisco-IOS if it starts with $9$?.
Until next time, don’t sleepwalk through life!
ສະບາຍດີ