Electronic Books

To interrupt the ???cracking??? process, hold down the Ctrl key and press the C key.
Brute Force
339
John keeps track of the passwords it finds for each hashed file. To verify
what passwords were found, type:
john ??“show pwdump
340
Practical Hacking Techniques and Countermeasures
The passwords will be displayed unencrypted in the hash file with information
separated by a colon (:). The biggest ones of concern are the first three:

Username

Password

User ID
*Note: Remember that the user ID is important because a user account can be
renamed. In this example this is a hashed file from a Windows target. Referring
to Chapter 3, each user is assigned a static user ID. The Administrator account
on a Windows machine will always be 500.
Brute Force
341
Linux has been running John the Ripper much longer than Windows. From
the directory containing the compressed files, type tar ??“zxvf john-1.6.tar.gz.
The files will uncompress into a new directory named john-1.6.
Change to the new directory by typing cd john-1.6 and pressing the Enter
key.
Next change to the src directory by typing cd src and pressing the Enter
key.
John the Ripper for Linux requires you to compile the application for the
machine type it is going to be running on. Many times, as in this example,
you can use the generic build by typing:
make generic
342
Practical Hacking Techniques and Countermeasures
The application will now build for the machine it is on.


Pages:
115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139