Skip to content

Xephoxx/ShadowPass_Hash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits
README.md
README.md
 
 
_config.yml
_config.yml
 
 
shadow_hash.py
shadow_hash.py
 
 

Repository files navigation

ShadowHash

Introduction :

As we know on Linux operating systems password are generally stored in "/etc/shadow" file in specific format and there are some formats. Each row in "/etc/shadow" file is a string with 9 fields separated by ':'.

Example below :

gituser:$6$kURThR6P$YUPkU29r1k2x2zXRU5R6eNYg6/qZv5aIcZreV21Fkgco0Kc609DiWBPlhObrKKqbO9dsU.MrqgpvP0WGU63IV1:17354:0:99999:7:::

The different fields are :

  1. The local username
  2. Password hash
  3. Number of days since the start of unix time (01/01/1970) that the password was last changed
  4. Minimum number of days before the password can be changed
  5. Maximum number of days before the password must be changed. 99999 means that the user will not be forced to change their password
  6. Number of days before forcing the password change that the user will be warned.
  7. The number of days after expiration that the account will be disabled
  8. Days since the start of unix time that the account has been disabled
  9. Reserved for future use

The majority of these fields are usually not used by Linux distributions. The most important fields are the user name and hash. The hash field consists of three separate fields. They are separated by"$" and represent :

  1. Some of these characters represent the cryptographic hash mechanism used to generate the actual hash.
  2. A randomly generated salt to protect against rainbow table attacks.
  3. The hash is the result of associating the user's password with the previously stored salt.

Hash accepted :

  • $1$ --> md5
  • $2a$ --> Blowfish
  • $2y$ --> Blowfish, with correct handling of 8 bit characters
  • $5$ --> sha256
  • $6$ --> sha512

Simple example with mkpasswd command :

mkpasswd --method=sha512 --salt=kURThR6P doit0002

Command line :

python -c "import crypt; print crypt.crypt('doit0002', '\$6\$kURThR6P')"
python3 -c "import crypt; print (crypt.crypt('doit0002', '\$6\$kURThR6P'))"
python3.5 -c "import crypt; print (crypt.crypt('doit0002', '\$6\$kURThR6P'))"
python3.6 -c "import crypt; print (crypt.crypt('doit0002', '\$6\$kURThR6P'))"

Proof of Concept :

[gituser@localhost ~]$ sudo cat /etc/shadow | grep gituser
gituser:$6$kURThR6P$YUPkU29r1k2x2zXRU5R6eNYg6/qZv5aIcZreV21Fkgco0Kc609DiWBPlhObrKKqbO9dsU.MrqgpvP0WGU63IV1:17354:0:99999:7:::
[gituser@localhost ~]$ python -c "import crypt; print crypt.crypt('doit0002', '\$6\$kURThR6P')"
$6$kURThR6P$YUPkU29r1k2x2zXRU5R6eNYg6/qZv5aIcZreV21Fkgco0Kc609DiWBPlhObrKKqbO9dsU.MrqgpvP0WGU63IV1

PS : Thanks to Hansel --> https://www.aychedee.com/2012/03/14/etc_shadow-password-hash-formats/

About

Generate a hash like those in /etc/shadow file

xephoxx.github.io/ShadowPass_Hash/

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages