hope someone can help me

superstar · **Joined:** 21 Jul 2010 20:36 **Posts:** 2

So i forgot my password @ Xfire, and i used xfire.pwd, and then at epw 1 i get his long code e40d4fc73b0764556055810900744b3b27e1becd. i hope someone can get this code for me because i really don't know how to get this thing. Thank you in advance !

aluigi · **Posted:** 21 Jul 2010 22:04

unfortunately the EPW field can't help you because it's only an hash so it's not reversable to the original password.

the following is the comment I left in the source code of xfirepwd:
"Xfire stores only the custom hash (not spent time on it due to the lack of interest) of the password and then when the client logins it sends a salted hash"

superstar · **Joined:** 21 Jul 2010 20:36 **Posts:** 2

hmmmm so that mean i can't get my password back like this?

aluigi · **Posted:** 22 Jul 2010 10:17

unfortunately you can't, you can only continue to login in Xfire automatically but you can't recover the original password

Sethioz · **Posted:** 28 Jul 2010 19:48

first of, if it would be really your password, you would reset it, so you can say that you are trying to steal somebody's password (most likely your friends, which is lame, dont do that).

secondly, password hash can only be bruteforced or attacked using wordlist.

Luigi, what type of hash is this ?
and small suggestion to you Luigi, there is a tool called passwordspro (im sure i have told you about it). it has plugin feature, any chance you can write a plugin that supports xfire hashes ? not that i want or need it, just a suggestion. lil bit offtopic, but im interested in phpbb3 hash support instead.

aluigi · **Posted:** 29 Jul 2010 08:15

it's the SHA1 hash of a string composed by the following fields:
- password
- password (yes again)
- "UltimateArena"

so if you password is "mypass" then EPW will be the SHA1 hash of the string "mypassmypassUltimateArena" which is: b73c7d20bec2ecd5781578efb81caccfeb8fbb39

Sethioz · **Posted:** 01 Aug 2010 01:09

so if you want to crack it, then SHA1 is supported by PasswordsPro and Cain.
as i understood Luigi right ?! if you want to crack the password using wordlists or bruteforce, you must set the settings to dublicate the word and add UltimateArena after each password tried ?

for example if my password is "aliens" then SHA1 hash would collide with "aliensaliensUltimateArena" ?

so if you want to crack it, hit it with wordlists or bruteforce using passwordspro or cain. passwordspro is more professional and also more reliable with resume function, but cain is faster.
also i think its possible to use SHA1 hash itself to log into "your" account. if you change the sent hash in packets, but im not sure how xfire works.
Luigi does xfire send SHA1 hash over internet ? so it can be replaced or not. anyways im not interested in xfire, gamers lamers :)

aluigi · **Posted:** 01 Aug 2010 08:25

yes for the "aliens" example.

if I'm not in error when it logins, xfire takes that hash and sends a new hash performed on that one plus another parameter got from the server.
anyway if you take the password hash from a computer, encrypt it and place it in the logininfo.yaml file then you will be able to login using that account without problems.

Sethioz · **Posted:** 01 Aug 2010 21:44

i will test this theory some time if you won't. if somebody does test it, plz post results here, so i wont double test. im not interested in xfire, but im interested in this concept, to know if its possible.

Luigi Auriemma

hope someone can help me