Questions tagged [john-the-ripper]
John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix systems, supported out of the box are Windows LM hashes, plus lots of other hashes and ciphers in the community-enhanced version ("jumbo"). [openwall.com]
128
questions
16
votes
1
answer
8k
views
John the ripper password cracked or not?
I have the shadow file from an embedded device running linux. Trying to use John to crack it. There is only the 'root' hash in the shadow file.
12 seconds in, John finds the password for 'root', but ...
- 161
11
votes
1
answer
95k
views
show previously hacked passwords with John The Ripper
I tried to crack my windows passwords on the SAM file with john the ripper, it worked just fine, and it shows me the password. But when i try to hack the same file again, john just tells me :
Loaded ...
- 679
10
votes
1
answer
103k
views
Use John the Ripper to break Password Protected Zip
I installed kali linux, that comes with John the ripper. I have a password-protected zip file. I'm pretty sure the password is complex. I first convert the zip into a hash:
sudo zip2john FILE_LOCATION ...
- 101
8
votes
2
answers
58k
views
How to crack `salt + SHA256(salt + password)` hashes with JTR?
I have a set of password hashes.
Here is an example:
9e74437e97ff201ff38416138a22a7f3adfa3b9c10e947481bd94b16eed7df6b6e2806
From the source code of the application generating this hash I learned that ...
- 1,013
7
votes
1
answer
8k
views
Why won't pdf2john extract the password hash of this encrypted pdf? Getting blank results
New to the community, and to JtR and Hashcat as a whole, but after searching for a few days I couldn't find a solution to this specific problem.
I have a password protected PDF file that I'm trying ...
6
votes
3
answers
18k
views
Does john the ripper not support yescrypt?
I'm learning about password attacks using john and am trying to use it for bruteforcing my shaddow file. I created a user called newuser with password stuff and then used
sudo unshadow /etc/passwd /...
- 195
6
votes
3
answers
31k
views
Is it possible to crack any SHA1 hashed password
I'm trying to understand how easy it is to crack a SHA1 hashed password. I have a training database giving hundreds of password hashed.
I have tried to use some online tools to crack them and I have ...
- 433
6
votes
3
answers
32k
views
Brute force alphanumeric password using JohnTheRipper
I recently recovered a zip archive with some files I need access to, but I can't remember the password. All I can remember is that the password was short (around 3-4 characters), and contained only ...
- 171
6
votes
1
answer
9k
views
For bcrypt why is JTR so much faster than hashcat?
To keep it short I've recently been learning about hashing and password hash cracking on TryHackMe.
I was tasked to crack the following hash: $2y$10$0veO/JSFh4389Lluc4Xya.dfy2MF.bZhz0jVMw.V....
- 61
5
votes
2
answers
27k
views
Generate John the Ripper rule
This question asks for pointers about generating JtR rulesets, but the OP states
I understand how to use it to make various permutations from a given wordlist
Could someone please explain that? ...
- 471
5
votes
4
answers
48k
views
How do I crack an id_rsa encrypted private key with john the ripper?
I am trying to crack a password protected id_rsa, with john the ripper. But it doesn't find the correct password for some reason.
I have create a new user and generated a new id_rsa with ssh-keygen (...
- 161
5
votes
1
answer
22k
views
John the ripper passwd file format with salt not working
I'm trying test password strength in one of our e-commerce sites. I'm using john the ripper to brute-force a password file. The algorithm used by PHP is:
$hash = md5($salt . $pass)
No other ...
- 61
4
votes
1
answer
37k
views
"john --format=md5" caused "Unknown ciphertext format name requested" error
This is known md5 hash for Kioptrix: Level 1.1 (#2)
Linux unshadow file
wolf@linux:~$ cat md5hash.txt
root:$1$FTpMLT88$VdzDQTTcksukSKMLRSVlc.:0:0:root:/root:/bin/bash
john:$1$wk7kHI5I$...
- 367
3
votes
2
answers
3k
views
John the Riper couldn't crack all the passwoords
I have a password file with 7 passwords, but JTR only could crack 4 and 3 that couldn't.
What it's the reason?
C:\tmp\john179j5\run>john --show shadow.txt
root:password:12923:0:99999:7:::
student1:...
- 51
3
votes
1
answer
10k
views
John The Ripper - find password when you know a part of it
I left my old job a few years back and wanted to check a few of my old pdf payslips but for the life of me I can't remember the password.
I've tried using John The Ripper in incremental mode because I ...
- 133