Results 1 to 5 of 5

Thread: obtain linux password

  1. #1
    Just burned his ISO
    Join Date
    Apr 2007
    Posts
    1

    Default obtain linux password

    Hi All
    I am trying to hack a linux machine set up by my school for a hacking competition.

    I use nmap to know that the machine is running linux.

    Does anyone know how can I use ssh or scp to get the password file for my target machine?

    After I get the password file, I am going to try use john the ripper to decrypt the password.

    Is it the only way to do it, or is there any other easier way to accomplish the same?

    Thanks

  2. #2
    Just burned his ISO
    Join Date
    Mar 2007
    Posts
    8

    Default

    Well you need to get the /etc/shadow file which contains the password hashes, and then crack them. You need to be root to access /etc/shadow. I don't know how you are going to do that.

  3. #3
    Moderator theprez98's Avatar
    Join Date
    Jan 2010
    Location
    Maryland
    Posts
    2,533

    Default

    Quote Originally Posted by tiger66 View Post
    Hi All
    I am trying to hack a linux machine set up by my school for a hacking competition.

    I use nmap to know that the machine is running linux.

    Does anyone know how can I use ssh or scp to get the password file for my target machine?

    After I get the password file, I am going to try use john the ripper to decrypt the password.

    Is it the only way to do it, or is there any other easier way to accomplish the same?

    Thanks
    Social Engineering
    "\x74\x68\x65\x70\x72\x65\x7a\x39\x38";

  4. #4
    Member Eristic's Avatar
    Join Date
    Aug 2006
    Posts
    188

    Default

    Quote Originally Posted by tiger66 View Post
    Hi All
    I am trying to hack a linux machine set up by my school for a hacking competition.

    I use nmap to know that the machine is running linux.

    Does anyone know how can I use ssh or scp to get the password file for my target machine?

    After I get the password file, I am going to try use john the ripper to decrypt the password.

    Is it the only way to do it, or is there any other easier way to accomplish the same?

    Thanks
    Read up on the exploits that might work against the machine...?

  5. #5
    Senior Member shamanvirtuel's Avatar
    Join Date
    Mar 2010
    Location
    Somewhere in the "Ex" human right country
    Posts
    2,988

    Default

    Think Social Engineering is the only pretty solution for your case or a direct physical access to the server.............

    if it's a "hacking competition" we won't help you i think, no fair, competition is with your own skills, and not with hacking knowledge of other... or the result for you in this comp will not reflect ur real capacities....

    http://www.linuxexposed.com/ >> good place for beginners.....
    Watch your back, your packetz will belong to me soon... xD

    BackTrack :
    Giving Machine Guns to Monkeys since 2006

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •