|
-
December 5th, 2003, 09:33 AM
#11
jtr always works, nothing else needed.  or if you cannot get the /etc/passwd then try PHF file in the /cgi-bin directory. if phf is there then you are in luck this file allows remote access to files (including the /etc/passwd file) to try this. open your web browser and type http://www.victim.com/cgi-bin/phf?Qa...%20/etc/passwd , ofcurse you have to change the victim.com to what ever you like . And if you want to be little fancier then try l0pht. This is going to cost little money but, damn, never saw anything like that. Some time takes a long time but always comes up with positive results.
-
December 5th, 2003, 02:12 PM
#12
L0pht does bunch of Windows pws, but I think you are really paying for the nice looking GUI interface. You have to be able to read a lot to use JtR L0pht is just point and click, no typing.  If you need a "free" version of L0pht I can help you. Good day.
-Cheers-
PS: The problem with dumping the SAM file is that you need Administrator privilages to use DLL injection. The alternative is to boot/run in DOS and copy the SAM file to a text file then reboot and crack.
-
December 27th, 2003, 06:30 PM
#13
Member
ob bro let me answer you quation........
1) /etc/passwd !usually! doesnt store any passwords but links program requests to /etc/shadow which is 700 and cannot be read by any other user apart from root....
2) /etc/shadow contains the encrypted passwords BUT there are two diffrent encryption algorithms that may be used MD5 (if the admin is smart) and DES(if the admin doesnt give a ****)
to crach DES which is pretty weak you'll need JohnThe Ripper
to crach MD5 DA BEST WAY and DA QUICKEST is to use http://www.antsight.com/zsl/rainbowcrack/
a next generation cracker........ e.g password such as : rt56yu7878ijk can be cracked in 56 sec
-
December 27th, 2003, 07:19 PM
#14
Re: how do you crack linux passwords
Originally posted here by qod
and probably will try Crack.
You really should not do crack. It's bad for you and expensive.
-
December 27th, 2003, 11:13 PM
#15
Ok guyz there is one more thing...if the admin has used MD5 encryption...then u can use rtgen to generate hashes for md5 and then CAIN for crytpanalysis...this will crack MD5s faster...
read rainbow Crack tutorial here :http://www.antsight.com/zsl/rainbowc...cktutorial.htm
(specific to passwd cracking)
read abt rtgen approach in general here : http://www.computer.org/proceedings/...3560044abs.htm
CAin home here : http://www.oxid.it/cain.html
if u guyz can recalll "windows passwords can be broken in seconds" a few mnths ago...then just know they uset rtgen approach
just nJoy.
guru@linux:~> who I grep -i blonde I talk; cd ~; wine; talk; touch; unzip; touch; strip; gasp; finger; mount; fsck; more; yes; gasp; umount; make clean; sleep;
-
January 5th, 2004, 12:32 AM
#16
Senior Member
Doesnt matter if you have passwd shadowing enabled, i have seen many times this being comprimised, so even with this on you should still have strong passwords. But if you really want to test your crack get friends to input passwords for you, using ascii characters not on the keboard, numbers, hashes/etc and then you will find the integrity of your cracker.
p.s. make sure they write down the passwords (this can be trouble if they are TOO good)
-
January 5th, 2004, 01:31 PM
#17
the easiest way to crack the passwords on a linux box to wich you have physical access and wich uses lilo:
on the lilo prompt type Linux init=/bin/bash rw
as long as the image's name is Linux (ofcourse)
this starts a session in single user mode as root on a read-write filesystem
open the /etc/shadow file and remove the root password hash.. (or use passwd to change to a password you like)
this is the trick I use on old systems I recover
ASCII stupid question, get a stupid ANSI.
When in Russia, pet a PETSCII.
Get your ass over to SLAYRadio the best station for C64 Remixes !
-
January 5th, 2004, 02:16 PM
#18
Originally posted here by the_JinX
this is the trick I use on old systems I recover
Yea, and social engineering is just me preparing for a movie career. And hacking is "network security analysis"
You are good An
-
January 5th, 2004, 09:46 PM
#19
i was trying to use john to crack my passwd to see how secure it was but i cant get it to work
im in my shell and i run every option needed and it would always print the help menu back to me
do u guys hve any tutorials or documents on how to use john?
thanx
work it harder, make it better, do it faster, makes us stronger
-
January 6th, 2004, 01:35 AM
#20
Member
JR should include some support documentation with it...........but I can suggest some good scenario for cracking with JR
./john -w:allwords2.dic -rules enc_pass_file
(allwords2.dic is a =>5 million english dictionary) www.passwords.ru/dic/allwords2.zip
good luck
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
