Hitachi HTS543216LA Password issue

[einstein9]

Dear Experts

i was wondering about something related to hitachi Passwords

the issue is not removing it, it is KNOWING IT...

Any Secret way how to know it Manually or by any other method??

Thank you

[guru]

And I am 100% sure this subject is closed and stored within a black box

[einstein9]

And I am 100% sure this subject is closed and stored within a black box

Guru, why is that?

in fact i cannot see any reason for that..

WD can be
SG also can be

i got this idea/question few days back and was wondering why not Hitachi?

if someone KNOWS HOW? just say it is POSSIBLE, the rest is my homework
but if said: NO WAY i will consider it as a challenge and give it priority more to go through it

and thnx for the BlackBOX issue hehe

[BlackST]

BlackBOX is a trademark of BlackST

[einstein9]

hehehe, to be honest, i knew the BlackHAT (attended there some time ago)

but just knew now the BlackBOX hehehehe

if its possible then i think i should try harder n more

Many thnx

[guru]

ok, so it's within "Schrödinger's Box"

[loki]

I would assume if this was possible then Acelabs would have already implemented it in their PC3000 UDMA like with Seagate & WD drives. I'm also assuming your looking in to this on the off chance a user uses the same password for multiple things ie documents/websites, logins or maybe forensics?

Loki

[einstein9]

Loki, some how YES you are right, thats why i needed to know it

Now, BlackST heheheh i can tell u something here about it since you are the BlackBOX here

i managed to open the blackbox and was able to bypass locked hdd`s and managed to read all modules from it

i was testing on one of my drives here, i had a Mod. copies before/after the password set.

I compare both looking into the security Mod. but seems only 2 changed inside which i doubt the pass is there,
since the pass i set is 7 digits (same char.)

I tried also look inside those Mod. (all of them) looking for CLEAR TXT of my Pass. ( not there)

which leads to only 1 (i think) it is not CLEAR TXT AS IN WD

am i doing good so far? heheh

i hate sleeping @ night with something cooking in my mind with NO ANSWER.

thnx

[BlackST]

You HAVE PM....

[guru]

quote "I would assume if this was possible then Acelabs would have already implemented it in their PC3000 UDMA like with Seagate & WD drives." Oh dear.............. You think Ace knows everything? Wish there was a face palm Smilie



Native HGST password is not plain text. And hasn't been for some time..............

[loki]

quote "I would assume if this was possible then Acelabs would have already implemented it in their PC3000 UDMA like with Seagate & WD drives." Oh dear.............. You think Ace knows everything? Wish there was a face palm Smilie

Nobody knows everything
I picked Acelabs as an example as they are one of the market leaders in dr equipment & I would assume that they have researched this already.

As far as Im aware the Shinobi can do brute force & dictionary attacks to crack the password?


Loki

[einstein9]

Thnx guys, am still working on it, seems interesting really
in fact never thought about it till i got this Forensic case here

and Docs pass is never been a big deal really i was thinking about other stuff which the pass might help on and saves my time.

i suggest you try it in your side, and see how you will get through it... really good stuff to know (sometimes)

and btw, i asked Ace TS, one of them told me something (which doesn`t make any sense really, but have to consider it) which means maybe he don`t know, or like some of the Questions that i asked them some time ago and said: ACE Developers SECRETS...

seems not only BlackST has a BlackBOX they do also heheh

[guru]

Secret=they don't know

[einstein9]

Secret=they don't know

not always btw

i remember i asked them once about DragonFly4 (for example) |SelfTest Scripts (on older ver. util)
one Smart Q really, and TS said: cannot tell the answer since its one of their Tool Secrets
which developers made it on a such Enc. way

so that other competitors cannot use those Info. (i mean real R & D work) in their cheap Tools which you see now on the market

heheeh

they are right on this point btw and i Agree with them.

FYI, scripts on older ver. were 4 on new update was i think 7 (added 3 more) if am not missing something

[dodoz]

Hint

In SECI Module stored SHA-2 Hashes of passwords(User&Master)+random salt.
So it's possible( brutforce),but not easily(

[einstein9]

This subject is REALLY NOT AS EASY AS IT LOOKS....