If you are into password cracking then you probably know about it,John the Ripper is one of the most popular password
testing and breaking program available. JTR, as its fondly called
,combines multiple password cracking packages into one package,includes
auto detection of hashes and is a fast password cracker. It is currently
available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS and
supports 15 different platforms . Its primary purpose is to detect weak
Unix passwords ( no..I m kidding,Its primary purpose is to break passwords :P
).It can natively detect and crack various encrypted password formats
including several crypt password hash types most commonly found on
various Unix flavors (based on DES, MD5, or Blowfish), Kerberos AFS, and Windows
NT/2000/XP/2003 LM hash. JTR has an active community and multiple third
party patches have been added to increase its functionality to include
MD4-based password hashes and passwords
stored in LDAP, MySQL and others
unsupported hashes. JTR is the penultimate when it comes to password
cracking in windows (Cain and Abel is the ultimate :P), but for Linux and open source,its the best you can get your hands on.Fire it up with a wordlist and you are good to goHere is a sample output of JTR in Debian environment (shamelessly taken from Wikipedia)
root@0[john-1.6.37]# cat wpass.txt user:AZl.zWwxIh15Q root@0[john-1.6.37]# john -w:password.lst wpass.txt Loaded 1 password hash (Traditional DES [24/32 4K]) example (user)
guesses: 1 time: 0:00:00:00 100% c/s: 752 trying: 12345 - pookie
You can download JTR from here
PS : Like this article ? You can always support me by buying me a coffee or You can always try some of the cool merchandize from PROHACK.
POSTED BY XERO ALL RIGHTS RESERVED.
Technorati Tags: rdhacker,prohack,hacking tools,linux,microsoft,windows,jtr,password,password cracking,john the ripper
Tags:
hackings
0 reactions:
Post a Comment