Which hashing algorithm is used to create NT hashes?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which hashing algorithm is used to create NT hashes?

Explanation:
NT hashes are created by applying the MD4 hash function to the password encoded in Unicode (UTF-16LE). In Windows, the user password is first converted to Unicode, and that Unicode string is hashed with MD4 to produce the 128-bit NT hash stored for NTLM authentication. This is why MD4 is the correct choice here. Other hash functions like MD5, SHA1, and SHA256 are not used to generate the NT hash in this scheme, even though they are common elsewhere. The use of MD4 for this purpose is historical and makes the NT hash fast to compute, but also easier to crack with offline attacks.

NT hashes are created by applying the MD4 hash function to the password encoded in Unicode (UTF-16LE). In Windows, the user password is first converted to Unicode, and that Unicode string is hashed with MD4 to produce the 128-bit NT hash stored for NTLM authentication. This is why MD4 is the correct choice here. Other hash functions like MD5, SHA1, and SHA256 are not used to generate the NT hash in this scheme, even though they are common elsewhere. The use of MD4 for this purpose is historical and makes the NT hash fast to compute, but also easier to crack with offline attacks.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy