Penetration Testing mailing list archives

Re: htpasswd decrypt

From: Christine Kronberg <seeker () shalla de>
Date: Sun, 20 Jun 2010 12:10:43 +0200 (CEST)

Hi,

I haven't been aware of it, too.
If you know it, let me know.


  Why don't you just try? Took me less than two minutes:

home template # htpasswd -cbm testfile test test
Adding password for user test

home template # cat testfile
test:$apr1$qgW5z/..$7Y85TQKs.nBK6GbO.VqfK/

home template # john testfile
Created directory: /root/.john
Loaded 1 password hash (Apache MD5 [32/32])
test             (test)
guesses: 1  time: 0:00:00:00 100% (1)  c/s: 25.00  trying: test

  So the answer is: yes, it works.

  Cheers,

  Christine Kronberg.



------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

htpasswd decrypt Miguel González Castaños (Jun 18)
- Re: htpasswd decrypt dishix (Jun 19)
- Re: htpasswd decrypt Jacky Jack (Jun 19)
  - Re: htpasswd decrypt Christine Kronberg (Jun 20)
    - Re: htpasswd decrypt Miguel Gonzalez (Jun 20)
  - RE: htpasswd decrypt Gaurav Kumar (Jun 20)
    - Re: htpasswd decrypt Miguel González Castaños (Jun 21)
  - Re: htpasswd decrypt Paul Melson (Jun 21)
- <Possible follow-ups>
- Re: htpasswd decrypt modversion (Jun 20)