Re: Cisco Secret 5 and John Password Cracker

[Jason Thompson <securitux () gmail com>]

Cain and Abel can be used to crack that. You'll have to reduce
yourself to using Windows though :)

http://www.oxid.it/cain.html

Password-5, unlike Password-7, is non reversible so you'll still need
to brute force or dictionary attack it.

I am not sure if there is a UNIX tool that will do it, I am sure there
is somewhere. I'd rather use UNIX myself too.

-J

On 11/3/05, Unknown User <9nkn0wn () gmail com> wrote:
> Hi
>
>  I have recovered some cisco passwords that are encrypted using the
> secret 5 format. They look like this
>
>  $1$Wgqc$sbb8R/2rtOhc7t86J5axj.
>
>  The question is can i simply plug this into a standard unix type
> shadow file format and use john to crack. I've tried this but I'm not
> convinced that John is actually working. Its also incrediblly slow.
> Any other tools available to crack these types of passwords.
>
>  Thanks

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------