(adsbygoogle = window.adsbygoogle || []).push({}); Hello,

Being relatively new to SQLi, I have uncovered hashes which in fact I cannot decode using a plain old md5 decryper. A few of these passwords are wordpress and therefore are MD5 + Salted.

Here are some of the passwords:

6387d8c20f678a135c42c7f36ada2d32

0391592b2e955f5cb3740d3666852cea

9b2ab975aba86a39e13a86ba9a789c4e

2d19ce295f3c18dad82280381059b351


$P$BmQpbUXV4cWfOvbxKA6y5iaIcKKQaP0 (wordpress)

$P$BhATM/C6kFSRoUSBashcxZqM81YbiD1

$P$9UQwzDEfKKYw7gTVPLuvRWs7TrhxzP0



Basically, if possible, does anyone know the steps to find the text values of these?
Also, if you possess the salted+md5 hash as the password, but also have the original "salt" used, can you easily uncover them?

Sorry if my terms are somewhat unclear/incorrect, as I have previously stated, I am a beginner.
Thanks.

Ahh, good ol' SQL Injection. Md5's and salted Md5 hashes can really be a pain in the ass if a online decoder doesnt get it

Well really how a online decrypter works is the database is filled with millions of different Md5 encoded passes ( Mostly Simple passes but youd be surprised ) Than when you insert your Md5 it matches that md5 and checks the Database if any of them match, and if it does you got your md5 text. You cant 'decrypt' an Md5.

Well if your like me and SQL or XSS etc alot and find stupid Md5's I would suggest to you downloading Cain and abel. This program cracks Md5,Md4,Md3,Sha-1, and many more.

Theres three methods to decrypt them with this program

-Bruteforce
-Rainbow Tables
-Sniff

Very useful program cracks Md5's pretty well,

Enjoy

Thank you very much for taking the time to reply.
I will do as you recommended and let you know if any manage to decrypt.

Not a problem :wub:
Alright yea its a really good program :y: