We can recorvery passphrase wallet.dat with open wallet.dat by hex editor?

bartekjagoda

jr. member

Activity: 87

Merit: 5

Quote from: richdadphat on January 03, 2020, 09:54:57 PM

Dear All,

I had hear some people said that thay can recorvery passphrase wallet.dat with open wallet.dat by hex editor.
it's real ?

Thank

The wallet.dat file uses DB format, so if you know the DB format you can see where the encrypted password is stored.

You cannot see the passphrase, but you can extract the string that is the encrypted form of the password and need to execute
some decoding on it before it becomes the passphrase.

So the claim is partly true, but most likely they are just trying to scam you to get into your wallet.

The thing you want to do is use bitcoin2john.py from the John the Ripper or Magnum Ripper github repo and with that string (which is a hash of the password) use various software to try to find your passphrase.

The most common is Hashcat and you can ask around at hashcat.org to find out how to use it most effectively.

HCP

legendary

Activity: 2086

Merit: 4314

The token file section of the tutorial is a good place to start: https://github.com/gurnec/btcrecover/blob/master/TUTORIAL.md#the-token-file

You're probably wanting the "wildcard" section:

Quote from: https://github.com/gurnec/btcrecover/blob/master/TUTORIAL.md#expanding-wildcards

%p - any single ASCII letter, digit, or symbol

That should be good if you didn't use "space", "tab", line feed" or "carriage return" in your password... then you add in the "number of characters" notations to specify what length of password it should be looking for.

For instance, to search for all possibilities of passwords between 3 and 8 characters long that is made up of ASCII number+character+special:

Quote

%3,8p

Or... if you know the exact length... you can do something like:

Quote

%10p

That will search for all passwords that are 10 characters long... and made up of ASCII number+character+special

NOTE that the token file is "case sensitive"... so be careful with %p and %P... they mean very different things! Wink

richdadphat

member

Activity: 98

Merit: 10

Quote from: BitMaxz on January 04, 2020, 07:08:22 PM

Quote from: richdadphat on January 04, 2020, 02:08:45 AM

Can you suggest me a few solutions

There are some ways to get the password of your wallet.dat by Bruteforce and not on the hex editor.

If you want to know about the method of getting the right password of your wallet.dat try to follow the guide from the link below.

- https://github.com/gurnec/btcrecover

It is free and opensource.
Be careful about dealing with a newbie or untrusted users like the above said they are most likely scam.

Dear
If my password had number+character+special, how make format token.txt file ?

Thank

BitMaxz

legendary

Activity: 3206

Merit: 2904

Block halving is coming.

Quote from: richdadphat on January 04, 2020, 02:08:45 AM

Can you suggest me a few solutions

There are some ways to get the password of your wallet.dat by Bruteforce and not on the hex editor.

If you want to know about the method of getting the right password of your wallet.dat try to follow the guide from the link below.

- https://github.com/gurnec/btcrecover

It is free and opensource.
Be careful about dealing with a newbie or untrusted users like the above said they are most likely scam.

richdadphat

member

Activity: 98

Merit: 10

Quote from: HCP on January 04, 2020, 03:33:22 AM

They're lying to you. They cannot retrieve the wallet passphrase from a wallet.dat using a hex editor.

The only solution is to attempt to bruteforce it. You can use something like btcrecover or hashcat or "John The Ripper"... but they are not exactly "newbie" friendly. They require a bit of technical skill and are all commandline programs.

Another option is a "trusted" password cracking service like Wallet Recovery Services... The owner (Dave) has been on these forums for a while and has a number of successful attempts at password recovery for numerous users. They also have a thread here on BitcoinTalk: https://bitcointalksearch.org/topic/bitcoin-wallet-recovery-services-for-forgotten-wallet-password-240779

Thank you so much.

HCP

legendary

Activity: 2086

Merit: 4314

They're lying to you. They cannot retrieve the wallet passphrase from a wallet.dat using a hex editor.

The only solution is to attempt to bruteforce it. You can use something like btcrecover or hashcat or "John The Ripper"... but they are not exactly "newbie" friendly. They require a bit of technical skill and are all commandline programs.

Another option is a "trusted" password cracking service like Wallet Recovery Services... The owner (Dave) has been on these forums for a while and has a number of successful attempts at password recovery for numerous users. They also have a thread here on BitcoinTalk: https://bitcointalksearch.org/topic/bitcoin-wallet-recovery-services-for-forgotten-wallet-password-240779

richdadphat

member

Activity: 98

Merit: 10

Quote from: HCP on January 03, 2020, 11:39:51 PM

Quote from: richdadphat on January 03, 2020, 09:54:57 PM

I had hear some people said that thay can recorvery passphrase wallet.dat with open wallet.dat by hex editor.
it's real ?

No. Wallet passphrase's are not stored in the wallet.dat. They're used to encrypt information within the wallet.dat file.

If someone claimed this, they either have no idea what they're talking about or they're probably hoping to get someone who doesn't know any better to "prepay" a recovery fee.

EDIT: Just realised this is in BitcoinJ board... So are you referring to a "Bitcoin Core" wallet.dat? or were you asking about a wallet file for a different wallet? Huh

Hi,
I had my wallet by bitcoin core but forget password. I had aks to some person, they said me can get Wallet passphrase's by hex editor.

But i no peace of mind to send wallets to them.

Can you suggest me a few solutions

Thank

HCP

legendary

Activity: 2086

Merit: 4314

Quote from: richdadphat on January 03, 2020, 09:54:57 PM

I had hear some people said that thay can recorvery passphrase wallet.dat with open wallet.dat by hex editor.
it's real ?

No. Wallet passphrase's are not stored in the wallet.dat. They're used to encrypt information within the wallet.dat file.

If someone claimed this, they either have no idea what they're talking about or they're probably hoping to get someone who doesn't know any better to "prepay" a recovery fee.

EDIT: Just realised this is in BitcoinJ board... So are you referring to a "Bitcoin Core" wallet.dat? or were you asking about a wallet file for a different wallet? Huh

richdadphat

member

Activity: 98

Merit: 10

Dear All,

I had hear some people said that thay can recorvery passphrase wallet.dat with open wallet.dat by hex editor.
it's real ?

Thank

Topic: We can recorvery passphrase wallet.dat with open wallet.dat by hex editor? (Read 340 times)