September 30, 2022 at 7:00 PM
I have something that looks like this:
This whole string is the output of bcrypt hashing function. Correct?
This is technically not a "hash" message/digest in the sense of regular hashing functions like MD5 for example, because unlike MD5, this consists of many different parts. Correct?
The first two $ delimited chars indicate what algorithm it is, the second two chars indicate "cost" (of cracking?), the following 22 chars represent the "salt" and remaining 31 chars represent the the actual "hash" (the n-th blowfish hash?). Correct?
How can I reproduce this if I already know the clear text password but don't know the salt?
This whole string is the output of bcrypt hashing function. Correct?
This is technically not a "hash" message/digest in the sense of regular hashing functions like MD5 for example, because unlike MD5, this consists of many different parts. Correct?
The first two $ delimited chars indicate what algorithm it is, the second two chars indicate "cost" (of cracking?), the following 22 chars represent the "salt" and remaining 31 chars represent the the actual "hash" (the n-th blowfish hash?). Correct?
How can I reproduce this if I already know the clear text password but don't know the salt?