Help Irongeek.com pay for
bandwidth and research equipment:
 Web Hosting By:


Sponsored by:

Vulnerability scanner – Download FREEWARE!

Google
Affiliates:



















Irongeek's Featured Links:

Web Hosting

Web Hosting

Business Web Hosting

Keylogger

Document Scanning

Free Domain Names

Notebooks

Recover Data

Free Antivirus

hosted exchange 2007

IT Security Computer Training Videos

exit sign







































Web Hosting:
Help Irongeek.com pay for bandwidth and research equipment:

 

AddThis Feed Button Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example (Hacking Illustrated Series InfoSec Tutorial Videos)
Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example
 

In a previous video I explained the basics of cryptographic hashes. Go watch "A Brief Intro To Cryptographic Hashes/MD5" before this video. In this tutorial, I'll be giving an example of why weak hashes are bad. The example I'll be using is the CRC32 hash that Outlook uses to store a PST archive's password with. The CRC32 algorithm as implemented by Microsoft Outlook is easy to generate hash collisions for, so even if you can't find the original password you can find an alternate one that works just as well.


If the embedded video below does not show RIGHT click here to save the file to your hard drive.

Printable version of this article

blog comments powered by Disqus

Ten most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2009, IronGeek
Louisville / Kentuckiana Information Security Enthusiast

Alls good, in the hood.