Interesting, since MD5 hashes are supposed to be "one way", are they not?
I've often discussed setting up an "online cracking service" (think Alex
Moffet's crack seriously networked a la Beowulf with a Web interface).
Aside from the technical challenges of setting up and maintaining such
a project, the obvious issue, from a security perspective, would be trust.
For example, if I know that Alice connected from 220.127.116.11 and supplied
a hash/password, and I retained the unencrypted hash/password, would I
not now (potentially) have access to "something" (maybe accessible, maybe
privileged, maybe not) at 18.104.22.168?
Still, bravo to you for setting it up :-)
On or about 2004.07.01 19:03:33 +0000, md5er (info () passcracking com) said:
I've set up a quick website and system to crack md5 hashes online using Rainbow tables. The project is using
RainbowCrack and currently ~47 Gb of tables. At the moment it can crack hashes of lowercase letters and/or numbers up to 8
The cracking service is free
If you are interested you can check out the site here: http://passcracking.com
Full-Disclosure - We believe in it.