Hash identification tool
git clone git@git.mcdim.xyz:/var/www/git/houndsniff.git
Log | Files | Refs | README | LICENSE

commit 87768650290e83e8086368894bf17cf207b7d6a1
parent 7c4cadb508fc71fdd04600707937b6b5dce84fb4
Author: Michael Constantine Dimopoulos <mk@mcdim.xyz>
Date:   Thu, 10 Feb 2022 19:27:46 +0000

Updated readme regarding the percentages

MREADME.md | 17++++++++++++++++-
1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md @@ -21,7 +21,7 @@ $ sudo make install ``` Usage ---- +---- ``` houndsniff [HASH] ``` @@ -31,6 +31,21 @@ houndsniff -s ``` You can exit with ^C. +Note +---- +It is impossible to mathematically and algorithmically determine which specific algorithm produced a certain hash, and that's definitely not houndsniff is claiming to be able to do. A hash of a specific length and characterset could have been generated by a number of different hashing algorithms, and the hash itself doesn't give further information for one to determine whether or not it was produced by i.e MD5 or RIPEMD128, since both of these algorithms produce 128 bit hashes. + +The only effective way to distinguish between two hashing algorithms that produce hashes of the same characteristics is through the popularity of each hashing algorithm. This is how the percentages are calculated. + +**The percentages are not arbitrary or random**. They are hardcoded in the program in `select.c`, which may give the impression that they are random. This is not the case. They are determined through web search engine results. The numbers are combined into a sum which is then split accordingly into percentages. This process is done semi-automatically with the use a script. + +So, generally, regarding the percentages: ++ houndsniff is not meant to give the impression that the percentages are calculated in real time. The percentages are hardcoded into the program. ++ Still, the percentages aren't random or arbitrary. I chose to hardcode them in because it would make the tool a lot lighter, easier to maintain, so that it wouldn't require an internet connection to run, and so that it wouldn't randomly bruteforce websites. Hash algorithm popularity does not change overnight, and if it did we would just update houndsniff, so there's no reason why the percentages should be calculated in real time, and not just hardcoded in. ++ the percentages are truncated to 2 decimal digits, so they not add up to 100 exactly. ++ only known hashing algorithms are taken into consideration when calculated them. ++ and lastly, the percentages are, of course, only as accurate as the web search engine results. + Thanks ---- Thanks a lot to tuu and fizzie, as well as kurahaupo on ##c @ freenode for their revisions and suggestions! (even though I've yet to implement everything). I truly appreciate the help.