Cracking Competition

[lePobz]

RescoExplorer2003 - the installer is for a pocketPC but also installs the client for the desktop PC.

 

[SubKamran]

heh, asked a techi I know about this.

"How do you crack a 168 bit encrypted file?"
"you don't"

That's what my dad says...he said you need a key, my .NET books wants a key so it can decrpyt it using Triple DES .

 

[SubKamran]

OK, the trick to this one is not to decrypt it, but drag the rxf into notepad to see what info is in there - alas the first text shows Resco 3.00 as the tool used to encrypt and decrypt this. Resco is a simple encryption and decryption interface for Windows, a very useful tool.

Download this, import the RXF and you will be met with a password box. Since it's hosted locally you'd be able to bruteforce this, and because i'm nice, the password is 'between 2 and 6 characters long, alpha+numeric'

But anyway. I think i'll leave the hard one.

WHAT?! I thought it said "RescoR64" (which it does) and I googled "rescor" and found nothing

BTW, do you know how many combinations that is? You must have to use one of those password cracker programs or something...

 

[lePobz]

That was the aim of the competition, to see who could use their ingenuity to get at the data within the file, but never mind. Guess you'll never know what the prize is

 

[Bad^Hat]

Quit washing your hands and release the damn files!

 

[Ti133700N]

So it's a Triple DES (3 key) encrypted file. I'm on it.

 

[Sprafa]

bruteforce it? could someone spell it out for n00b ? No one explained bruteforce!!!! is it an app or just an expression for guessing?

 

[lePobz]

A simple bruteforce of the unlocking password would suffice, you don't actually have to crack the encryption algorithims, that's like level 200. This is level 1.

Bruteforcing is basically trying every combination of letter and number one after the other, and eventually after trying (possibly) a few billion different combinations, the correct one is found. This is only an option for cracking passwords on local computers, because the time taken to transmit one possible password combination to a remote server and get the response back is about 2 seconds, and you don't want to times that by about 50 billion.

 

[Sprafa]

Bruteforcing is basically trying every combination of letter and number one after the other, and eventually after trying (possibly) a few billion different combinations, the correct one is found. This is only an option for cracking passwords on local computers, because the time taken to transmit one possible password combination to a remote server and get the response back is about 2 seconds, and you don't want to times that by about 50 billion.

ok, that's exactly what I thought. thx


Now, I'm just back into watching this thread, since I dunno shit about Hex so I won't be able to crack this thing....

 

[Reven]

cant find a brute forcer :/ but i dont give up! aha!!!!

btw is it case sens?(aka, is there a case letter?)

 

[poseyjmac]

and remember guys, there are other ways to hack this. like social engineering! watch and learn..

hey pobz.. wanna have a good time? *wink* *wink* :farmer:

 

[lePobz]

Sure baby, my place in 5...

 

[nw909]

RescoExplorer2003 - the installer is for a pocketPC but also installs the client for the desktop PC.

It only installed it to my pocket PC

 

[lePobz]

You should have encryp/decrypt functions in the menu when you second-mouse-click on files? It's installed default when you run the PPC installer on the PC (unless you clicked no).

RXF file types should also be recognised.

 

[Bad^Hat]

Bruteforcing is basically trying every combination of letter and number one after the other, and eventually after trying (possibly) a few billion different combinations, the correct one is found.

Like in Jurrasic Park.

"Uh-uh-uh! You didn't say the magic word!"