The Old Sewing Factory

The Old Sewing Factory

05 May 2018

Hashing Passwords

Last October I made a utility website passwordhashing.com, it takes plain text and converts it into one of BCrypt, PBKDF2, SHA1, SHA256, SHA384 or SHA512.

It’s not a high traffic site, but what’s interesting is that 94% of the requests are for bcrypt hashes. What’s not clear is why. I’d like to think that bcrypt is now the more popular hashing algorithm, it’s a happy thought, but I can’t claim this site is big enough to evidence that. I suspect the reality is that someone has linked to the tool from a forum where someone needed a bcrypt hash to reset an admin password in magento, or some other cms tool. ¯\(ツ)/¯. Here’s the breakdown of requests:

Url% of Views
/1.26%
/BCrypt94.11%
/PBKDF21.69%
/SHA11.14%
/SHA2560.72%
/SHA3840.26%
/SHA5120.79%
/translate_c0.03%

TIL the /translate_c url is because someone is mirroring my site in another language.

comments powered by Disqus