MySQL database password encryption methods

The following articles mainly describe the MySQL database password encryption method and the actual solution for cracking. We will divide it into four parts to explain it, these include dictionary cracking, which is closely related to the actual application intensity of the dictionary and how to correctly crack the rainbow table.

Cracking

1. dictionary cracking is related to dictionary strength.

Choose Start> program> MySQL Server 5.0> MySQL Command Line Client to open the MySQL Command Line Client and enter the password, enter the following code to reset a new password:

 
 

  
  
Use MySQL  
  
  
update user set passwordpassword=password("1977-05-05") where user="root";  
  
  
flush privileges; 
 
 

In this test, change the original password to "", as shown in result 9.

Figure 9 modifying the MySQL user password

Re-open "C: \ Program Files \ MySQL Server 5.0 \ data \ MySQL \ user. MYD obtains its new password string "B046BBAF61FE3BB6F60CA99AF39F5C2702F00D12", selects a new dictionary, in this example, selects the generated birthday dictionary, 10, as shown in Figure 11, and only selects lowercase strings for cracking, the attack results were quickly obtained. The actual results show that Cain is used to crack the MySQL password. If dictionary cracking is used, the cracking effect is related to the dictionary strength. As long as the cracked password is in the dictionary, it will be able to crack.

Figure 10 cracking the MySQL password again

Figure 11 modify the MySQL password and crack the MySQL password again

2. Use a rainbow table for cracking

In Cain, we also provide the rainbow table cracking function for MySQL. In the cracking method, select "Cryptanalysis Attack"-"MySQL SHA1 Hashes via RainbowTables", as shown in Figure 12, in the actual test process, because the sha rainbow table format provided on the network is RTI and RT is used in Cain, I changed the file Suffix of all downloaded rainbow tables from RTI to RT, then crack the table and prompt that the information is not displayed successfully. The format of the rainbow table is different. Cain only recognizes the information it provides.

Figure 12 using the rainbow table Cracking Method

 

Figure 13 use a rainbow table for cracking

3. Hash Calculator

Various Hashes calculations are provided in Cain. Click the computer icon on the main interface to bring up the Hashes calculator. In "Text to hash", enter the original value to be converted, for example, enter "12345678" and click "Calculate" for calculation. 14 Hashes values are displayed, as shown in figure 14.

Figure 14 calculate the Hashes Value

Figure 12 using the rainbow table Cracking Method

Figure

4. Generate a rainbow table 

The above content is an introduction to the MySQL database password encryption method and the actual solution for cracking. I hope you will gain some benefits.