Re: Etc/shadow file and john

From: frank boldewin (frank.boldewin@gmx.de)
Date: Thu Jul 28 2005 - 01:58:47 EDT


are you just using the shadow file?
to crack it with john you have to correlate it with the passwd file.
there should be a tool in your john directory, which is called unshadow.
so safe the shadow and passwd from the machine and do the following:

unshadow passwd.txt shadow.txt > tocrack.txt

then tocrack.txt can be cracked by john
hope that helps.

cheers,
frank

----- Original Message -----
From: "Sherwyn Williams" <sherwill22@tmail.com>
To: <pen-test@securityfocus.com>
Sent: Wednesday, July 27, 2005 6:56 PM
Subject: Etc/shadow file and john

>I am doing an assesment for passwords on a network, after getting the
> password file I piped the output to a text file, tried to run that
> against John and can't get any luck with the program. Do anyone here
> uses any other password programs, and is there a better format than a
> text file to store the out of the etc/shadow when trying to get the
> passes.
> Sherwyn Williams
> Technical Consultant
> Sherwill22@tmail.com
>



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:39 EDT