Penetration Testing mailing list archives
RE: Etc/shadow file and john
From: "Leandro Reox" <lmet5on () fibertel com ar>
Date: Wed, 27 Jul 2005 23:45:19 -0300
An effective method to get passwords is to pass them trough specific generated rainbow tables with a tool like CAIN. Is this hash encrypted with md5 or another known hashing algorithm ? Cheers -- Leandro Reox http://www.securearg.net/ Secure from the source -----Original Message----- From: Sherwyn Williams [mailto:sherwill22 () tmail com] Sent: Wednesday, July 27, 2005 1:57 PM To: pen-test () securityfocus com Subject: Etc/shadow file and john I am doing an assesment for passwords on a network, after getting the password file I piped the output to a text file, tried to run that against John and can't get any luck with the program. Do anyone here uses any other password programs, and is there a better format than a text file to store the out of the etc/shadow when trying to get the passes. Sherwyn Williams Technical Consultant Sherwill22 () tmail com
Current thread:
- Etc/shadow file and john Sherwyn Williams (Jul 27)
- RE: Etc/shadow file and john Leandro Reox (Jul 28)
- Re: Etc/shadow file and john Sherwyn Williams (Jul 28)
- RE: Etc/shadow file and john Clement Dupuis (Jul 28)
- Re: Etc/shadow file and john Dave Spencer (Jul 28)
- Re: Etc/shadow file and john Terry Vernon (Jul 28)
- Re: Etc/shadow file and john frank boldewin (Jul 28)
- Re: Etc/shadow file and john Sherwyn Williams (Jul 28)
- Re: Etc/shadow file and john Wayne G (Jul 28)
- RE: Etc/shadow file and john Leandro Reox (Jul 28)