Sha-2 Encryption in a Nutshell
Jeffrey Jiang
| Gabriel Small
Period 4 - Group 16
This project covers string hashing and encryption using the SHA-2 algorithm.
We implemented the SHA-2 algorithms in C++ in accordance to the standard as described in the FIPS Publication 180-3, along with a hash cracker to test these algorithms against a word list, such as rockyou.
To use this project first clone the repo using:
git clone git@github.com:Stuycs-K/final-project-4-jiangj-smallg.git
If GNU g++ is not installed, run the following:
sudo apt install g++Note: The SHA256/224 algorithms make use of CPU instruction extensions to be more efficient. The lab machines do not support the fastest version of SHA256/224, but it does support one faster than the standard implementation.
To determine CPU compatibility, run the following commmand:
make extIf AVX2 is not outputted, you are left with the default implementation. The lab machines will likely run the algorithms faster.
If SHA is outputted, you will have the fastest implementation of SHA256/224 on that device.
Run the following command to test if the algorithms are working correctly:
make testIf any of the tests fail, use the lab machines instead to continue.
Run one of the following:
make
make allThis will create programs found in the tool directory. There will be the shaXXX programs and the Shaker program. If there is any compilation errors. Use the lab machines.
Note: The SHA-2 algorithms are optimized for x86 architecture. Macbooks and such are not x86. As a result, the program will most likely run faster on lab machines. Therefore, it is highly discouraged to run the programs on Mac. If you wish to continue, you will need the following:
If you can run g++ in your terminal, make sure g++ uses GNU's g++ and not clang. We use GNU's g++ compiler specific features.
To check, do the following:
g++ --versionIf clang appears, you will have to install GNU g++ on your preferred method such as homebrew.
brew install gccOnce installed, do one the following:
- Go into the makefile and change the
CCvariable to the GNUg++program you have just installed. - Change the alias of
g++in the mac to refer to GNU instead ofclangby running the following command:
# replace g++-13 with the appropriate g++ version
sudo ln -s $(which g++-13) /usr/local/bin/g++Now, follow the instructions in the Non-Mac User Section.
If you get stuck anywhere here, remember it is significantly better (faster and easier) to run this program on an x86 machine. The lab machines are always available to just ssh into.
These programs will hash input strings with their respective SHA-2 algorithm.
tool/sha256 abc 'hello world'
tool/sha256 < rockyou.txt
head -n 5 rockyou.txt | tool/sha256Running shaXXX will continuously ask for input and hash it. To exit, issue a SIGINT using ctrl-c.
This is the hash cracking tool. Basic usage is as follows:
tool/Shaker --wordlist rockyou.txt --hash hash.txt # defaults to sha256
tool/Shaker -w rockyou.txt -h hash.txt # defaults to sha256
tool/Shaker --wordlist rockyou.txt --format sha512 --hash hash.txt
tool/Shaker -w rockyou.txt -f sha512 -h hash.txt-w or --wordlist option is required. -h or --hash is also required. The wordlist option accepts a file containing the wordlist. The hash option accepts a file containing a list of hashes to crack. The -f or --format option accepts either sha256|sha224|sha512|sha384.