±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 3 Overall: 35765
New Yesterday: 3 Visitors: 134

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

EfficientDiary

Computer forensics discussion. Please ensure that your post is not better suited to one of the forums below (if it is, please post it there instead!)
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

randomaccess
Senior Member
 

EfficientDiary

Post Posted: Jul 03, 13 08:01

has anyone had any experience with the program "efficient diary" (http://download.cnet.com/Efficient-Diary/3000-2124_4-10910951.html)

It creates a diary file, but gives the user the option to encrypt it.

The website says it uses "SHA" encryption.
I've created a couple test files with known passwords and looked for every kind of "SHA" that i can (SHA1,SHA2, SHA224, SHA256, SHA512) and cant seem to find anything

has anyone else come across this type of file before?

(sidebar: why do people use the same password for everything except the encrypted file i need to get into.....)  
 
  

jaclaz
Senior Member
 

Re: EfficientDiary

Post Posted: Jul 03, 13 13:23

- randomaccess

(sidebar: why do people use the same password for everything except the encrypted file i need to get into.....)

It's called (from your point of view) "Murphy's Law Corollary", more specifically you could add it here:
www.murphys-laws.com/m...puter.html

BTW Wink
If Murphy's laws are so true then how come I can log onto this site and submi............
[connection reset - error message 928 ]


Very Happy

jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 
 
  

randomaccess
Senior Member
 

Re: EfficientDiary

Post Posted: Jul 03, 13 14:18

its quite the annoying
you see a list of stored passwords
there are usually only 2 or 3, maybe minor variations as well

so the next thing is, in the absence of a command line utility, does anyone have any suggestions of "scripting" a brute force on a gui program?  
 
  

rarosalion
Member
 

Re: EfficientDiary

Post Posted: Jul 03, 13 14:41

- randomaccess
so the next thing is, in the absence of a command line utility, does anyone have any suggestions of "scripting" a brute force on a gui program?


It'd certainly be my last resort, but I'd take a look at AutoIt to script the GUI. It'll be slow (compared to any normal password crackers), but at least it won't be manual!  
 
  

jaclaz
Senior Member
 

Re: EfficientDiary

Post Posted: Jul 03, 13 17:24

- randomaccess
its quite the annoying
so the next thing is, in the absence of a command line utility, does anyone have any suggestions of "scripting" a brute force on a gui program?

Alternative to AutoIt there could be AutoHotKey, or Macromaker:
members.ij.net/anthony...oMaker.htm
but they all will be slow-slow.

And is to find out if the specific "EfficientDiary" locks itself after a given number of failed attempts and if it locks "needing a restart" or "locks for good"...

I seem to remember having seen/used a "tailored to brute force generic" program, something that must be dated 2000 or earlier, I will see if I can find it in my backups, but the "general idea " is more or less the same, either "send keys" to a given window or "copy from list/paste to given windows" approach.

jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 
 

Page 1 of 1