Offline Password Cracking - John The Ripper Tool

In this video we’ll demonstrate offline password cracking using John The Ripper tool. Lets first change to the directory where John is located. Here you can see some important binaries used by John. First we’ll execute the ‘unshadow’ script which will merge the ‘/etc/pass’ and ‘/etc/shadow’ files into a single file, called ‘crack.db’. This file will be used by John for password brute force attack. Let’s see the content of the crack.db file You can see there are various option that can be used for cracking password using John. You can see that the brute force attack we previously initiated is still under progress. John has now discovered the password ‘toor’ for the user ‘root’. Now lets uses the ‘—show’ switch to display the password in plaintext. John stores the obtained passwords in the ‘john. Pot’ file. You can see that the dictionary attack (in console 2) has now been completed and john has revealed 4 passwords. You’ll notice that the dictionary attack was much faster than the brute force attack carried out earlier. The program has now stored all the obtained passwords along with their respective hashes in the ‘john.pot’ file. You can also see the plain-text password in ‘pass-hases.db’ (used in the dictionary attack). Review full Chapter at www.logicalsecurity.com