Search Posts

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 18/12/2013, 06:44:49 UTC

Quote from: Revalin on December 17, 2013, 05:35:57 AM

Sure:

Code:

#!/usr/bin/ruby
require "net/http"
require "json"

$rpc_pass = "rpc-pass"
words_a = ['hawaiian', 'dress', 'long-sleeve']
words_b = ['ford', 'toyota', 'camry']
words_c = ['australia', 'thailand', 'colombia']
words_d = ['fender', 'gibson', 'valencia']

def test(passphrase)
  puts passphrase.inspect
  request = Net::HTTP::Post.new("/")
  request.basic_auth "", $rpc_pass
  request.body = { method:"walletpassphrase", params:[passphrase, 1] }.to_json
  response = Net::HTTP.new("localhost", 8332).request(request)
  if response.code == "401" ; puts "Incorrect RPC user/pass" ; exit 1 ; end
  ret = JSON.parse response.body
  if ret["error"].nil? ; puts "\nFound it! #{passphrase.inspect}" ; exit ; end
  return if ret["error"]["code"] == -14 # wrong passphrase
  raise "WTF? #{ret.inspect}"
end

words_a.each do |a|
  words_b.each do |b|
   words_c.each do |c|
   words_d.each do |d|
   [a,b,c,d].permutation.each { |p| test p.join }
   end
   end
  end
end

puts "No luck."

Using this, I get the following errors:

http://puu.sh/5QpCL.png

Any ideas?

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 16/12/2013, 13:50:09 UTC

Is there any way this could be altered for multiple wordlists?

Eg. I am fairly sure I made the password from four wordlists.

For example, List A is shirt-themed (hawaiian, dress, long-sleeve, etc.)

List B is car-themed (ford, toyota, camry, etc.)

List C is country-themed (australia, thailand, colombia, etc.)

List D is guitar-themed (fender, gibson, valencia, etc.)

So it would try "hawaiianfordaustraliafender", "hawaiianfordaustraliagobson", etc.

Right now I am making it run all wordlists at once, but this is inefficient as it repeats words and it has a lot of combinations that I know are not correct (incorrect order, etc.)

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 14/12/2013, 05:11:00 UTC

Using that script, I get this error:

http://puu.sh/5LZZp.png

Only thing I changed was the word list.

Any ideas?

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 14/12/2013, 03:47:54 UTC

Quote from: tjc on December 13, 2013, 01:55:18 PM

Quote from: madmooseman on December 13, 2013, 07:45:02 AM

Great, that's running now. Thanks Revalin!

So when it's gone through them all I'll either get a "success: your password is: dontbeanidiot" or "no luck"?

EDIT: I still get "Incorrect RPC user/pass" even when starting bitcoind as "bitcoind -rpcpassword=rpc-pass". I renamed bitcoin.conf to bitcoin.conf.old like you said (in linux)

I've got it running on my windows machine, but it won't run in my ubuntu VM properly. I want to run it in the VM as it may take a while, and I can save the state of the VM and safely reboot my computer without losing the progress.

I misspoke in my write up. The rpc password is in the config file but i did not add it to the ruby script. I could not get it to run if I did. I do not understand the reasoning but that is how it worked for me. I have edited it.

Yeah alright, so what I did to get it running was to have the line "$rpc_pass = "rpc-pass"" in brute.rb and then start bitcoind as "bitcoind -rpcpassword=rpc-pass".

Is there any way to make the script not check passwords with spaces between them?

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 13/12/2013, 07:45:02 UTC

Post

Topic

Board Bitcoin Technical Support

Re: Encrypted wallet.dat, lost password, any solutions?

madmooseman

on 12/12/2013, 10:40:42 UTC

Quote

type ruby brute.rb

The script should start running and you will see it fill with lines of attempted and failed passphrases. If it succeeds, it stops running and prints Found it! youractualpasscode

*Note: for step 4 above, I still do not know the proper way to make a config file for windows 7. I struggled with this and finally got something to work. If anyone can give some simple and complete instructions please add them.

I assume with this you have to navigate to the folder where brute.rb is?

Whether I run it on windows or ubuntu, I have the same problem - it says that my RPC password is incorrect, even when copying the password from the file.

It does try one guess first, but it isn't correct.

Here is the code I'm running (with my passwords censored)

Code:

#!/usr/bin/ruby
require "net/http"
require "json"

$rpc_pass = "rpc-pass"
words = ['pass1', 'pass2', 'pass3', 'pass4']
max_words = 4

def test(passphrase)
  puts passphrase.inspect
  request = Net::HTTP::Post.new("/")
  request.basic_auth "", $rpc_pass
  request.body = { method:"walletpassphrase", params:[passphrase, 1] }.to_json
  response = Net::HTTP.new("localhost", 8332).request(request)
  if response.code == "401" ; puts "Incorrect RPC user/pass" ; exit 1 ; end
  ret = JSON.parse response.body
  if ret["error"].nil? ; puts "\nFound it! #{passphrase.inspect}" ; exit ; end
  return if ret["error"]["code"] == -14 # wrong passphrase
  raise "WTF? #{ret.inspect}"
end

(1..max_words).each do |n_words|
  words.permutation(n_words).each do |perm|
   [" ", ""].repeated_permutation(perm.count + 2).each do |j|
   test(["", *perm, ""].zip(j).join)
   end
  end
end

puts "No luck."

My problem is that I have a list of words, but I don't know the order. I know that I used either 3 or 4 of these words.

I also have seen people saying to use John the Ripper on this, but I can't for the life of me work it out.

Alternatively, I can offer a "pretty decent" reward if someone can get it based on the lists of possible passwords, the mkey section of the wallet and whatever else you need (short of the wallet file itself).

Any help would be much appreciated.

Post

Topic

Board Beginners & Help

Re: Lost wallet

madmooseman

on 24/06/2013, 09:29:30 UTC

Quote from: J35st3r on June 24, 2013, 08:15:43 AM

This guy is offering a paid-for service https://bitcointalk.org/index.php?topic=240779.0

Newbie thread here: https://bitcointalk.org/index.php?topic=239665.0

I DO NOT vouch for him (it may be a scam), but if you ONLY send him the extracted master key / unused keys it should be safe enough. Don't send him your entire wallet file.

Yeah, might send the extracted master key and have a think about it. Cheers for that link, it's pretty much what I'm after, although I would prefer a well-respected forum member.

Post

Topic

Board Beginners & Help

Re: Lost wallet

madmooseman

on 24/06/2013, 07:10:14 UTC

16.64 BTC in it, so it's well worth it. (https://blockchain.info/address/1GyNNZz9eSuGdJTiKHhVXEbJApWSfJxqhu).

I'm happy to send the seckeys and a reward if it works, even if someone had an idea of how to approach it better I would be grateful.

Post

Topic

Board Beginners & Help

Topic OP

Lost wallet

madmooseman

on 29/05/2013, 06:32:36 UTC

I've pretty much got this problem here (https://bitcointalk.org/index.php?topic=85495.20). I know a couple of phrases that are possibly in the password. I have also run one of Revalin's scripts but I had no luck. I've extracted the seckeys, but I'm not sure where to go from here.

As an aside, I was running the program on an old laptop, but in about a month I'll have access to a desktop that I can just use for cracking.

Has anyone got any advice?