![Page 1: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/1.jpg)
Daily hackTruecrypt GPU partial password
recovery By George Lagoda
Feb 15, 2014
![Page 2: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/2.jpg)
/wh0x41mi
George Lagoda
Security expert Pentester Interests: [deep|web]penetrations,
revers, forensics,
Work at . . .
![Page 3: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/3.jpg)
Again about recovery
![Page 4: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/4.jpg)
Maybe again about Anna
![Page 5: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/5.jpg)
What I had?• Partialy lost TC passwd• 4-5 symbols lost or we have something like:
[Y|y]a[L|l]ublu[S|s]vou[K|k]isku
So we either do not remember 1-2-3-4-5 symbolsOr Don’t remember symbols’ case
![Page 6: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/6.jpg)
Tools for LinuxTrueCrack
Written for LinuxOptimized for CUDA (NVDIA dependence )Supports most of TC hash types and encryption methodsBut what is AMD or WINDOWS?
![Page 7: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/7.jpg)
oclHashCat, the almighty
Supports both CUDA and OpenCL, lot of modules, hard to understand>cudaHashcat64 –help
621Y = TrueCrypt 5.0+ PBKDF2-HMAC-RipeMD160622Y = TrueCrypt 5.0+ PBKDF2-HMAC-SHA512623Y = TrueCrypt 5.0+ PBKDF2-HMAC-Whirlpool624Y = TrueCrypt 5.0+ PBKDF2-HMAC-RipeMD160 boot-mode
![Page 8: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/8.jpg)
How this all work?Offset(bytes) Size Description
0 64 Salt
64 4 ASCII string “TRUE” (encrypted)
Usually we know hash type, we have salt and encrypted string.
HACK Time?
![Page 9: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/9.jpg)
Some more options
![Page 10: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/10.jpg)
So lets give it a hackcudaHashcat64.exe -m 6211 C:\Temp\anna_secret.tc -a 3 -1 ?l?u?d ?1?1wer?1Y -o C:\Temp\anna.txt
![Page 11: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/11.jpg)
Results
![Page 12: 5. [Daily hack] Truecrypt](https://reader030.cupdf.com/reader030/viewer/2022032504/55c4b048bb61eb242c8b45ab/html5/thumbnails/12.jpg)
Daily hack : Truecrypt GPU partial password recovery
The end.
