Page 1 of 2 12 LastLast
Results 1 to 10 of 16

Thread: Passwords, John The Ripper, etc.

  1. #1
    Junior Member
    Join Date
    Feb 2002
    Posts
    18

    Question Passwords, John The Ripper, etc.

    I need help concerning password cracking...i've downloaded John The Ripper to crack some (UNIX)-passwords but i noticed that the the dictionary file shipped with the program is rather limited and now i want to make my own dictionary. Hence i need a tool which will e.g. import two different wordlists and kill all the duplicates and spit out a new file.

  2. #2
    Senior Member linuxcomando's Avatar
    Join Date
    Sep 2001
    Posts
    432
    do a man and john and it will tell you how to include your own dictionarys
    I toor\'d YOU!

  3. #3
    AntiOnline Senior Member souleman's Avatar
    Join Date
    Oct 2001
    Location
    Flint, MI
    Posts
    2,883
    ummm, you are using unix? Try awk/sed. That has got to be the best tool out there.
    \"Ignorance is bliss....
    but only for your enemy\"
    -- souleman

  4. #4
    Senior Member
    Join Date
    Sep 2001
    Posts
    150

    dictionary

    L0phtCrack has a good trial version out with a pretty comprehensive dictionary file. I would download the demo and steal the dictionary file out of it.

  5. #5
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    There is a nice little utility program available HERE


    DjM

  6. #6
    AntiOnline Senior Member souleman's Avatar
    Join Date
    Oct 2001
    Location
    Flint, MI
    Posts
    2,883
    By the way, it isn't password cracking, it is password "auditing." There is a BIG difference.
    \"Ignorance is bliss....
    but only for your enemy\"
    -- souleman

  7. #7
    Junior Member
    Join Date
    Feb 2002
    Posts
    18
    huh ? where's the difference ?
    Love your country, but
    never trust its government. -- Robert A. Heinlein

  8. #8
    Senior Member BrainStop's Avatar
    Join Date
    Jan 2002
    Posts
    295
    Well, the difference lies in the legality of it ....

    If you are auditing passwords (i.e. you are doing this as part of your administrator job), then you are entitled to verify that users follow the password rules that have been set out in your IT policy.

    If you do not have rightful access to the password file (i.e. you are trying to get illegal access to a system) then you are cracking, which can potentially lead to criminal prosecution.

    Cheers,

    BrainStop
    "To estimate the time it takes to do a task, estimate the time you think it should take, multiply by two, and change the unit of measure to the next highest unit. Thus we allocate two days for a one-hour task." -- Westheimer's Rule

  9. #9
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584
    lol wait.. isnt John The Ripper a really OLLLLDDD password cracker??

  10. #10
    AntiOnline Senior Member souleman's Avatar
    Join Date
    Oct 2001
    Location
    Flint, MI
    Posts
    2,883
    BrainStop> Thanks, couldn't have said it better myself

    sOnIc> Old, yeah, but it does still work. A password cracker is a password cracker. Kinda like the fact that Crack is still the best for *nix, and that one is even older. Then again, they did update it a few times.
    \"Ignorance is bliss....
    but only for your enemy\"
    -- souleman

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •