Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 23

Thread: Help with John

  1. #11
    Junior Member Acester's Avatar
    Join Date
    Jul 2008
    Posts
    54

    Default

    Quote Originally Posted by =Tron= View Post
    Check out the forum section of the site, there are quite a few both general and more specific discussions about rainbow tables.
    http://www.freerainbowtables.com/phpBB3/

    EDIT: As far as I know this program will not work with WPA, at least I have never heard of anyone using it for it only for MD5, NTLM and LM, but yes you can contribute by calculating hashes quite easily using the DistrRTgen program. So for WPA I would stick with airolib-ng at the time being.
    Bleh, back to square one.. lol

    Okay, so my original intentions were to create a wordlist with JTR that would include all letters and numbers.. Then run that through airolib.. then use the database to crack the wpa handshake. The main issue is that the passphrase is not in any of my dictionarys, so with that said, you would have to create your own wordlist, correct?
    The following statement is true:
    The previous statement is false.
    :confused:

  2. #12
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by Acester View Post
    The main issue is that the passphrase is not in any of my dictionarys, so with that said, you would have to create your own wordlist, correct?
    Correct, as WPA passwords are actually not cracked but essentially guessed based on a list of predetermined words it will have to be present in the wordlist in order to be found.
    -Monkeys are like nature's humans.

  3. #13
    Junior Member Acester's Avatar
    Join Date
    Jul 2008
    Posts
    54

    Default

    Okay.. now with all that said, I understand John can create a wordlist.. Could you help me with this tron? :P As a test, I would just like to know how to create one, how to set a minimum number of characters and a maximum number of characters, and how to include both alpha and numeric.

    I've looked everywhere for an example, but I cannot find one..
    The following statement is true:
    The previous statement is false.
    :confused:

  4. #14
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by Acester View Post
    Okay.. now with all that said, I understand John can create a wordlist.. Could you help me with this tron? :P As a test, I would just like to know how to create one, how to set a minimum number of characters and a maximum number of characters, and how to include both alpha and numeric.

    I've looked everywhere for an example, but I cannot find one..
    I am not convinced that John would be the best program to use for achieving this. As already mentioned in this thread I would advice you to check out a few of the dictionary permutators posted under the Programming section of the forum.
    http://forums.remote-exploit.org/forumdisplay.php?f=27
    -Monkeys are like nature's humans.

  5. #15
    Senior Member PrairieFire's Avatar
    Join Date
    Apr 2007
    Posts
    705

    Default

    Crunch Dictgen - Can be found in /pentest/password/crunch


    Hope you have 5+ terabytes drives laying around for your "wordlist" and a couple years to spare watching it try to crack it.
    Μολὼν λαβέ - Great spirits encounter heavy opposition from mediocre minds.

  6. #16
    Junior Member Acester's Avatar
    Join Date
    Jul 2008
    Posts
    54

    Default

    Quote Originally Posted by PrairieFire View Post
    Crunch Dictgen - Can be found in /pentest/password/crunch


    Hope you have 5+ terabytes drives laying around for your "wordlist" and a couple years to spare watching it try to crack it.
    Yes, that is what I was looking for.

    Holy cow. :|

    Well at least I learned a bunch of things from this..
    I'm starting to believe that WPA is extreemly strong when you have a unique SSID and Password.. Like, it's just impossible to create a dictionary. :| The password was my name, which is 11 chars. My computer is a beast, so I just wanted to see what it could do lol.. But it dosn't have TB's, unfortunately. Anyway, thanks for all the help everyone.
    The following statement is true:
    The previous statement is false.
    :confused:

  7. #17
    Good friend of the forums
    Join Date
    Feb 2010
    Posts
    328

    Default

    generally brute force a remote service over 6 chars is 'takes way too long' less you use distributed attacks.

  8. #18
    Just burned his ISO
    Join Date
    Feb 2006
    Posts
    9

    Default

    might not right place to post but

    I've downloaded jtr for windows and dumped the LM hash with pwdump7 but it dos'nt seem to be working right I know the password and added it to the standard wordlist that comes with john the ripper but it still won't find it here's the output

    C:\cracks\john171w\john1701\run>john-mmx c:\cracks\hash1.txt
    Loaded 1 password hash (NT LM DES [64/64 BS MMX])
    (Administrator)
    guesses: 1 time: 0:00:00:00 100% (2) c/s: 8933 trying: 12345 - GANDALF

    and the LMhash
    Administrator:888888888888888888888888888888888888 88888888888888888888888888888888

    Thanks

  9. #19
    Good friend of the forums
    Join Date
    Jan 2010
    Location
    outside chicago, il
    Posts
    442

    Default

    Try using john -w:wordlist.txt c:\cracks\hash1.txt
    I like the bleeding edge, but I don't like blood loss

  10. #20
    Raider@GT
    Guest

    Default

    This is very intersting. thank you. It's a bit advanced for me but I plan to learn a little over the next few months.

    Thank you to everyone for all yuor helps.

Page 2 of 3 FirstFirst 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •