Algorithms on Hashes.org

As today a lot of hashes don't have only standard algorithms for generating anymore, Hashes.org supports the ability to write own algorithms out of a basic set of hash algorithms. Also possible are some modifications of hashes.

This means for every hash you want to generate or you get a result of, has a string which defines how the hash is generated out of the plain. The idea of this is oriented to the way MDXfind uses when cracking hashes.

Read this post to get more examples and information about Hashes.org's algorithms.

Hashes.org supports this following basic hash algorithms:
SHA1BCRYPT-CUSTOM, WORDPRESS, PHPBB3, SHA1DASH, DESCRYPT, MD5CRYPT, MD5APR1, SHA512CRYPT, SHA256CRYPT, MD5, SHA1LSB32, SHA1LSB35, SHA1, SHALINKEDIN, MD4, MD2, NTLM, LM, SHA512XORWRL, SHA256, SHA512, SHA224, SHA384, RIPEMD128, RIPEMD160, RIPEMD256, RIPEMD320, WRL0, WRL1, WRL, TIGER2, TIGER128-3, TIGER128-4, TIGER160-3, TIGER160-4, TIGER192-3, TIGER192-4, SNEFRU0, SNEFRU256, GOST-CRYPTO, GOST, ADLER32, CRC32A, CRC32B, HAVAL128-3, HAVAL128-4, HAVAL128-5, HAVAL160-3, HAVAL160-4, HAVAL160-5, HAVAL192-3, HAVAL192-4, HAVAL192-5, HAVAL224-3, HAVAL224-4, HAVAL224-5, HAVAL256-3, HAVAL256-4, HAVAL256-5, MYSQL5TOT, MYSQL5LCTOT, MYSQL5LC, MYSQL5, HMACMD5, HMACSHA1, HMACRIPEMD160, HMACSALTRIPEMD160, BASE64, TRUNC18, RADMIN2, MYSQL3, HALFMD5, RHALFMD5, IPB, SMF, JOOMLA, OSCOMMERCE, MYBB, VBULLETIN, BCRYPT, PBKDF2, HESK-SHA1, HESK-MD5, HESK-SHA256, RAW, DCAB-MD5, BCAD-MD5, CDAB-MD5, HUM, RHUM, DRUPAL7, KECCAK224, KECCAK256, KECCAK384, KECCAK512, KECCAK-SHAKE256, KECCAK-SHAKE512, NSLDAP, HAS-160, CRC32, TTH-HEX, TTH, EDON256, EDON512, BLAKE224, BLAKE256, BLAKE384, BLAKE512, BMW224, BMW256, BMW384, BMW512, CUBE224, CUBE256, CUBE384, CUBE512, ECHO224, ECHO256, ECHO384, ECHO512, FUGUE224, FUGUE256, FUGUE384, FUGUE512, GROESTL224, GROESTL256, GROESTL384, GROESTL512, HAMSI224, HAMSI256, HAMSI384, HAMSI512, JH224, JH256, JH384, JH512, LUFFA224, LUFFA256, LUFFA384, LUFFA512, SHA3-224, SHA3-256, SHA3-384, SHA3-512, PANAMA, RADIOGATUN32, RADIOGATUN64, SHABAL192, SHABAL224, SHABAL256, SHABAL384, SHABAL512, SHAVITE224, SHAVITE256, SHAVITE384, SHAVITE512, SIMD224, SIMD256, SIMD384, SIMD512, SKEIN224, SKEIN256, SKEIN384, SKEIN512, RO13, DANIWEB, DJANGOSHA1, ARMORGAMES, RUBY, AUTHME

IMPORTANT: Keep in mind that even when you can combine some of the crypt algorithms with other algoritms it's not always possible to recover these hashes in any way.

These hash algorithms can be combined to a algorithm string. These combinations are possible:

• Iterations: You can iterate an algorithm multiple times, by give a multiplier with 'x##' appended. For example SHA1x5 will do the SHA1 algorithm 5 times. The maximum of iterations is 100'000.
• Reverse: You can reverse the hash with using REV. This means the hash will be completely reversed. For example 098f6bcd4621d373cade4e832627b4f6 will become 6f4b726238e4edac373d1264dcb6f890.
• Rotate: You can shift a hash with a given number of shifts. One shift will put the char on the right side and will prepend it to the string. For example 098f6bcd4621d373cade4e832627b4f6 with ROT2 will become f6098f6bcd4621d373cade4e832627b4.
• Cut: You can cut off some parts of a hash. The first given number sets the start point of the cut and the second number how many characters are taken. For example 098f6bcd4621d373cade4e832627b4f6 with CUT0-16 becomes 098f6bcd4621d373.
• Uppercase: UC makes the whole string to uppercase. For example 098f6bcd4621d373cade4e832627b4f6 becomes 098F6BCD4621D373CADE4E832627B4F6.
• Multiplain: You can use the PLAIN of the hash multiple times in the hash algorithm. For every algorithm or modification you can use brackets to set the range where this modification is done. If you don't use brackets for every modification it does it on all the remaining string to the right. If you don't enter any plain in the hash string, it will be added at the end, so all algorithms and modifications are done on it.
  If you enter MD5(PLAIN)SHA1(PLAIN) you will get a hash which is the MD5 hash of the plain with the SHA1 of the plain appended, this means you will get a hash with length 72. You can use as many brackets you want, like with MD5(MD5(PLAIN)SHA1(PLAIN)) which will result in an MD5 of the given explained hash before. MD5MD5(PLAIN)SHA1(PLAIN) will get the same result, it's just a bit more difficult to see quickly which algorithm is done on which part.
• Additional Elements: There are some elements which can be inserted to place text in there:
  PLAIN: will place the plaintext in there, this can be between hashes to be concatenated or after a provided algorithm string to apply it there.
  SALT: same like PLAIN, but with the salt belonging to the hash
  INSDP: inserts a ':'

All the modifications and algorithms can be combined:
Example: CUT0-32SHA256UCMD5x10REVROT10SHALINKEDIN
This example string will do the following: The plain gets hashed with the sha1(linkedin) algorithm, then rotated by 10 positions, reversed, then hashed 10 times with MD5, then the hash gets converted to uppercase, this gets hashed with SHA256 and finally the first 32hex characters get cut out.
The plain '1234' will get you the hash '82211e0bdbea01df596536e468e586c4'.

Even if the hashing string is a very flexible construct, there are some rules to stick to:

• The hashing string cannot be longer than 300 chars
• You cannot reverse a hash two times in a row as it would not make sense (For example MD5REVREVSHA1 is not allowed).
• If you write MD5x05 it will be converted to MD5x5 (But you will get no error).
• You cannot reverse a hash at the beginning as it's not good to modify the plain before any hashing (For example MD5REVPLAIN is not allowed).
• You also cannot rotate or cut a hash at the beginning (examples MD5SHA1ROT10 and MD5SHA1CUT0-10 are not allowed).
• You can rotate up to the length of the hash which gets rotated. If you do ROT10MD5, you can just rotate up to 31, and ROT0 is not allowed.
• If you use cut, you have to look that the CUT range isn't larger than the hash which gets cut, for example CUT0-16MD5 is allowed, but CUT16-20MD5 not.
• UC is not allowed two times in a row (example MD5UCUCSHA1) and will be converted to single UC (MD5UCSHA1).
• UC is not allowed at the end or at the beginning (example UCMD5 and MD5UC are not allowed)
• UC is not allowed after CUT/ROT/REV, only before (example MD5UCREVSHA1 is not allowed, but MD5REVUCSHA1 is allowed).