Hashing files, and more importantly validating the hashes of files you download is very important. There is a long list of applications including Mac OS X that have been download, infected, recompiled and then pushed out to people. The only way to validate the integrity of the file is to match the checksums. There are many hashing tools in the Apple App Store, and there are many other products out there that will do it. I recently found an application that is multi-platform and chock-full-of features. The utility is free and is available via SourceForge. It is called QuickHash.
1. MD5, SHA-1, SHA-256 & SHA-512
2. Ability to hash dynamic text as you enter it. The hash updates as you add more text to the window.
3. Ability to hash an entire folder
4. Ability to copy files with hashes.
5. Compare two files’ hash
6. Compare directories’ hash
This is very useful if you want to create reversible passwords based on a particular seed. In this example, I am using the customer’s domain name and infosecmonkey.com and it generates a password. I could then go onsite and enter the customer’s domain name and infosecmonkey.com and retrieve the password.
You can also choose a file by either dragging and dropping, or browsing to the location. The tool allows you to paste into it, the expected hash output obtained from a credible source.
You can also hash the entire folder. You can save the output to a .csv or .html
Copy files gives you a rudimentary source/destination copy but generates the hash into a .csv or .html output files.
Compare files allows you to compare two files. It will not give you the differences in the files such as BeyondComare or ExamDiff Pro but rather a “match” or “no-match”.
This is very much like the compare file but does it with multiple files at one time.