MD5

MD5 (Message Digest Algorithm 5) is a historically significant cryptographic hash function. It is no longer considered secure as it has been found to suffer from extensive weaknesses.

• MD5 collisions

  MD5 is know to have collision issues. For exemple, it is very easy to find two byte strings with a given prefix that have the same MD5 hash.

  See these github repositories for more information:

  • collisions (descriptions of the attacks)
  • hashclash (hard to build)
  • md5collgen (updated version of hashclash)

• MD5 length extension - GitHub

  MD5 is also vulnerable to length extension attacks. This means that if you have the hash of a message, you can easily compute the hash of a message that has the original message as a prefix.

  See this script for a quick implementation of this attack.

  See this GitHub repository for more information.

  • md5_length_ext.py