What type of encryption is this?

The fear of every surveillance society: citizens protecting their own privacy with strong cryptography

What type of encryption is this?

Post by Hoernchen on Fri May 29, 2009 6:15 am
([msg=24569]see What type of encryption is this?[/msg])

I got an encrypted password and the decrypted version of it, but I am clueless as to what encryption was used.
Can anyone tell me what encryption was used for this code?

Original:
Code: Select all
sscstaff


Encrypted:
Code: Select all
SLHBTXWWDVGBFQAQPVPUFTADDWGWJTJS
Hoernchen
New User
New User
 
Posts: 2
Joined: Fri May 29, 2009 6:03 am
Blog: View Blog (0)


Re: What type of encryption is this?

Post by sandsphinx on Fri May 29, 2009 6:46 am
([msg=24570]see Re: What type of encryption is this?[/msg])

Hey, I'vre checked all of these encryptions, and none of them amtch the encrypted string at the end, and so i think, it might either be, a random encryption, or maybe a word, encrypted, and then encrypted again... It could be anything, I'm really not sure how to find out what encryption it is, These are the encryptions i know it doesnt belong to:

ASCII
Binary
Hex
Url Encode
Url Decode
Igpay Atinlay
Unpig Latin
SHA 1
MD5 One Way
Ceaser BruteForce
Rot 13
DES
HTML Entites Encode
HTML entites Decode
BAse64 encode
Base64 decode
Image
User avatar
sandsphinx
Poster
Poster
 
Posts: 206
Joined: Thu Mar 12, 2009 9:05 am
Blog: View Blog (0)


Re: What type of encryption is this?

Post by Hoernchen on Sat May 30, 2009 4:02 am
([msg=24598]see Re: What type of encryption is this?[/msg])

Maybe this extra following information would help?


The passwords were in a .fdb database. The databases password was BART and in one of the tables there were 2 users, one named gary and one named staff. I knew the password for staff beforehand, so I assume that the encrypted pw next to it is sscstaff. However, I am trying to find the password for gary.
Hoernchen
New User
New User
 
Posts: 2
Joined: Fri May 29, 2009 6:03 am
Blog: View Blog (0)


Re: What type of encryption is this?

Post by nathandelane on Mon Aug 03, 2009 10:21 am
([msg=27816]see Re: What type of encryption is this?[/msg])

Analyze it. First note that there are eight bytes of data in the original, and 32 in the encrypted text. So you might assume that there are four bytes in the encrypted text that pertain to every one byte in the plain text.

So now you have the following:
Code: Select all
s == SLHB
s == TXWW
c == DVGB
s == FQAQ
t == PVPU
a == FTAD
f == DWGW
f == JTJS
Me, Nathandelane, Highly influential to Hackerdom, Premature Optimization=http://c2.com/cgi/wiki?PrematureOptimization
User avatar
nathandelane
Poster
Poster
 
Posts: 204
Joined: Thu Jun 26, 2008 11:26 am
Location: Utah
Blog: View Blog (0)


Re: What type of encryption is this?

Post by flava on Mon Aug 03, 2009 1:01 pm
([msg=27822]see Re: What type of encryption is this?[/msg])

There seems to be a lot of of XYX sequences in the encrypted password. That makes me think it is encrypted somehow to make it longer, and then run through a polyalphabetic cipher with a stupid key word.
Viking at heart.
User avatar
flava
New User
New User
 
Posts: 31
Joined: Sun Jul 19, 2009 2:00 pm
Blog: View Blog (0)


Re: What type of encryption is this?

Post by htomeht on Tue Aug 04, 2009 3:21 pm
([msg=27881]see Re: What type of encryption is this?[/msg])

There are several things to note here.

As noted by Nathan There are four characters for each character.
This points to possibly a hash of some sort. It isn't md5 of course.
However we cant say that SLHB = s since the key scheduling could easily do some rotation on the plaintext

There is very poor randomness in the ciphertext.
There are 4 'w', 3 'd' and then mostly 2 of each character.
This coincides with the randomness in the plaintext which has 3 's', 2 'f' and then 1 of the remaining characters
It also points to that the cipher doesn't contain many rounds of substitutions.

The ciphertext consists of only characters from the alphabet, this takes most
ciphers out of the picture. This is consistent with some fairly simple substitution cipher.

Repeated patterns occur, QAQ, PVP, WGW, JTJ as noted by flava.

When I look upp firebird password recovery on google it tells us that it is impossible to recover passwords.
This is because it is a one-way hash. But the ciphertext is most certainly not a sha-1 hash which apparently is used by firebird. http://ibexpert.net/ibe/index.php?n=Doc ... nFirebird2 has some interesting information.

I suggest you find out if the firebird version that has made that entry does anything to data that it stores. But I would say that that password is not something generated by firebird at all. Find more information, you might not get it cracked but the non randomness of it tells me it should be possible.
htomeht
New User
New User
 
Posts: 7
Joined: Tue Aug 04, 2009 1:42 pm
Blog: View Blog (0)



Return to Crypto

Who is online

Users browsing this forum: No registered users and 0 guests