adobe-cred

module

v0.0.0-...-49c7f14 Latest Latest Go to latest Published: Jul 26, 2020 License: MIT

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/thaliaarchi/adobe-cred

Links

Open Source Insights

README ¶

Adobe credential dump analysis

This is parser and attempted cracker for the 2013 Adobe credential leak.

Adobe encrypted the passwords with DES or Triple DES in block mode, so any identical 8-character plaintext sequences are also the same when encrypted. Additionally, password hints are included in plaintext, making common passwords easy to guess. These weaknesses were highlighted by XKCD 1286: Encryptic (Explain) in which the passwords were turned into a crossword puzzle.

This project assumes the passwords were encrypted with DES (56-bit key) which is much weaker than Triple DES (168-bit key). It includes a hard fork of crypto/des that unrolls the key generation permutations for improved performance and uses uint64 rather than []byte in its API.

This project shall only be used for research purposes.

Directories ¶

Path	Synopsis
adobe
cmd
asciisearch
bruteforce
credread
des Package des implements the Data Encryption Standard (DES) and the Triple Data Encryption Algorithm (TDEA) as defined in U.S. Federal Information Processing Standards Publication 46-3.	Package des implements the Data Encryption Standard (DES) and the Triple Data Encryption Algorithm (TDEA) as defined in U.S. Federal Information Processing Standards Publication 46-3.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL