jtr cracking lanman hashes in all caps?

**abrupTHavoK** · 06-23-2009, 09:30 AM

i was using jtr to crack my lanman hash i got off my own laptop. its an easy password, and jtr cracked it pretty quick but it displayed the cracked pass in all caps

i know the pass is not in all caps, its my own password

how can i use john to displayed cracked passes in the proper case?

command i was using:
./john -i mydump.txt

thanks in advance for any help

anarchoi · 06-23-2009, 10:42 AM

why your message was validated and not mine?

**laffing_man** · 06-23-2009, 01:26 PM

you should do some research on the way the LMhash works... and you'll understand why when jtr cracked it, its in all caps.

**abrupTHavoK** · 06-24-2009, 12:38 PM

Originally Posted by laffing_man

you should do some research on the way the LMhash works... and you'll understand why when jtr cracked it, its in all caps.

thanks, i looked into LM hashes more and learned the difference between LM and NTLM hashes

with the LM hash decrypted, it can be used to decrypt the ntlm hash faster and get the right cases

i'm going to experiment with that later tonight

sorry for posting this thread without searching deeper

BackTrack Linux - Penetration Testing Distribution

Thread: jtr cracking lanman hashes in all caps?

Thread Tools

Search Thread

Display

jtr cracking lanman hashes in all caps?

Posting Permissions