Latest revision as of 07:28, 26 March 2016

John the Ripper is a tool for password cracking and recovery.

John is part of the Kali Top 10

How It Works

John works great with other programs, since it does many things well, and each of those capabilities are valuable on their own and can be combined with other programs. For an example, see Aircrack and John the Ripper

Password Generation

First, John has a powerful password generation mechanism. It does not simply take wordlists. It can generate many, many more passwords from those wordlists. For example, starting with a list of the 10,000 most common passwords, John can create additional lists with 400,000 or 8 million additional password variations to try. You can carefully control how those variations are generated to target your password search as you go.

Password Testing and Encryption

Second, John has support for many encryption mechanisms built-in, so it can handle a wide variety of password files. If you have a Unix password file with a list of users and encrypted passwords, John can brute force it.

Using John on Shadow Files

Unix stores password hashes in the /etc/shadow file, and user information in the /etc/passwd file. John the Ripper can use this information to crack the passwords of Unix users.

John the Ripper/Shadow File - a guide to using John to crack passwords from an /etc/shadow file.

Using John as a Password Generator

You can feed John the Ripper a wordlist, and use it to generate a slew of variations on that wordlist, using rules. (For example, from a wordlist containing "password" you can generate the variants "p4ssw0rd", "Password", "password0000", etc.)

See John the Ripper/Password Generation

This can even be used in conjunction with the pw-inspector tool, which will take a list of passwords as inputs and return only those passwords that meet certain criteria. More info: http://tools.kali.org/password-attacks/hydra

Using John to Crack WPA

See the John the Ripper/WPA page for notes.

Using Rules with John

See John the Ripper/Rules

Recovering Passwords from John

A page on how to actually recover the passwords once John has cracked them: John the Ripper/Password Recovery

References

John documentation: http://www.openwall.com/john/doc/OPTIONS.shtml

A fantastic and thorough list of tutorials for beginners: http://openwall.info/wiki/john/tutorials

WPA/WPA2 with John: http://openwall.info/wiki/john/WPA-PSK

John/Defcon Crack Me If You Can Contest: http://contest-2010.korelogic.com/

Using the korelogic rules: http://contest-2010.korelogic.com/rules.html

all the rules: http://openwall.info/wiki/_media/john/korelogic-rules-20100801.txt

Bunches of John + MPI tutorials: http://openwall.info/wiki/john/tutorials

@@ Line 15: / Line 15: @@
 Second, John has support for many encryption mechanisms built-in, so it can handle a wide variety of password files. If you have a Unix password file with a list of users and encrypted passwords, John can brute force it.
-=Using John as a Password Generator=
+=Using John on Shadow Files=
-My introduction and main experience with John is feeding it wordlists and using it to generate passwords to test from that wordlist.
+Unix stores password hashes in the <code>/etc/shadow</code> file, and user information in the <code>/etc/passwd</code> file. [[John the Ripper]] can use this information to crack the passwords of Unix users.
-See [[John the Ripper/Password Generation]]
+[[John the Ripper/Shadow File]] - a guide to using John to crack passwords from an <code>/etc/shadow</code> file.
-=Using John to Crack WPA=
+=Using John as a Password Generator=
-You can convert airodump-ng pcap files into a format that John can understand using the following steps [http://openwall.info/wiki/john/WPA-PSK]:
+You can feed John the Ripper a wordlist, and use it to generate a slew of variations on that wordlist, using rules. (For example, from a wordlist containing "password" you can generate the variants "p4ssw0rd", "Password", "password0000", etc.)
-==cap2hccap==
+See [[John the Ripper/Password Generation]]
-First, you'll need to convert the pcap to a hashcat pcap (hccap) file, using cap2hccap tool: http://sourceforge.net/projects/cap2hccap/files/
+This can even be used in conjunction with the pw-inspector tool, which will take a list of passwords as inputs and return only those passwords that meet certain criteria. More info: http://tools.kali.org/password-attacks/hydra
-Download it, and unzip it to a directory. Run <code>make</code> and it will make a tool called <code>cap2hccap.bin</code>, which you will then run as an executable.
+=Using John to Crack WPA=
-Call the bin file, pass it your cap file, then tell it where to output the hccap file:
+See the [[John the Ripper/WPA]] page for notes.
-<pre>
+=Using Rules with John=
-$ ./cap2hccap.bin /path/to/my.cap my.hccap
-</pre>
-==hccap2john==
+See [[John the Ripper/Rules]]
-Now you'll need to use hccap2john, a tool that comes with John the Ripper. if you don't have it (if you're using John the Ripper as part of a package manager, that doesn't build it), it's ok, you can just make a local build of John and use the tool from there.
+=Recovering Passwords from John=
-Download John the Ripper, and make it.
+A page on how to actually recover the passwords once John has cracked them: [[John the Ripper/Password Recovery]]
-<pre>
-$ tar xzf john-1.7.9-jumbo-7.tar.gz
-$ cd john*
-$ cd src
-$ make linux-x86-64
-</pre>
-Make sure you have LibSSL headers installed:
-<pre>
-$ apt-get install libssl-dev
-</pre>
 =References=
@@ Line 75: / Line 60: @@
-[[Category:John the Ripper]]
+{{JohnFlag}}
 [[Category:Kali]]
-[[Category:Passwords]]

John the Ripper: Difference between revisions

From charlesreid1