John The Ripper is a cracking password program, also known as JTR or john.
John The Ripper is not for the beginner, and does NOT crack WPA (alone) (by itself) (solely)***
You must be able to use Terminal, there is no GUI. Read the Terminal notes at the end
This is a pre-compiled install. If you wish to install from scratch, you'll need Xcode.
How to install John The Ripper on a Mac
Open Terminal
In Terminal, Type
ftp ftp.openwall.com |
Connected to ftp.openwall.com. 220 ftp.openwall.com - hosted by DataForce ISP - http://www.openwall.com/DF/ Name (ftp.openwall.com:"User Name"):
Type "anonymous" for login
anonymous |
RE-Type "anonymous" for password
anonymous |
Once logged in, Type the following
cd pub |
cd projects |
cd john |
cd contrib |
cd macosx |
Or because you are smart, just copy and paste
cd pub/projects/john/contrib/macosx |
Then make a dir for the listing
dir |
You should see a listing with a line named something like:
Dec 12 2010 john-1.7.6-jumbo-9-macosx-universal-1.zip
Use the get command along with the name of the file. hint: copy-paste again.
Get john-1.7.6-jumbo-9-macosx-universal-1.zip |
The download will start shortly
Opening BINARY mode data connection for john-1.7.6-jumbo-9-macosx-universal-1.zip (2120620 bytes).
100% |**| 2070 KiB 507.22 KiB/s 00:00 ETA
226 Transfer complete.
2120620 bytes received in 00:04 (487.87 KiB/s)
Exit the FTP by typing:
exit |
The file is now located in the root folder of your Mac , i.e Macintosh HD
Go there and unzip the file.
For the Sake of clarity, rename the folder to john, JTR, or whatever fits you:
Typing "cd /john-1.7.6-jumbo-9-macosx-universal-1/run" is longer than "cd /jtr/run"
Type cd "with your path"
cd /john/run |
Or
If you really like to complicate your life: Use a long name, in a distant folder with spaces, preferably. Piping directly into Aircrack-ng is also possible.
Cd /Volumes/Mr\ Blue/Cracking\ Soft/john-1.7.6\ jumbo\ 9\ macosx\ universal\ 1/run | ./john --test |
Test john The Ripper with the benchmark
./john --test |
For the manual, how to use it, etc
./john |
Notes
Terminal Notes
The FTP has a short timeout: Don't go away for too long or you'll be kicked out and will have to restart from scratch. If you are kicked out too many times, you'll end up blacklisted for few hours.
You must be logged as "anonymous"
If your path is a bit long, rename the directory. You can always drag the files into Terminal, that will save some typing.
***
You can pipe an output of JTR into Aircrack, See --stdout and/or --incremental on the JTR wiki
Help:
There is no free help. Period.
If you wish to receive assistance, you may donate via this page. It's not that I want to milk you, but that's the best way I have found to limit the "OMG, HELP! Johm de ribber iz not working. lol :D"*
As stated in the first lines "John The Ripper is not for the beginner"
Help: $4.99 Full install $14.99 (yes, I can do a distant full install)
*Example why:
No, I am not kidding. it's real!
Manual
John the Ripper password cracker, version 1.7.6-omp-des-jumbo-9
Copyright (c) 1996-2010 by Solar Designer and others
Homepage: http://www.openwall.com/john/
Usage: john [OPTIONS] [PASSWORD-FILES]
--config=FILE use FILE instead of john.conf or john.ini
--single[=SECTION] "single crack" mode
--wordlist=FILE --stdin wordlist mode, read words from FILE or stdin
--rules[=SECTION] enable word mangling rules for wordlist mode
--incremental[=MODE] "incremental" mode [using section MODE]
--markov[=LEVEL[:START:END[:MAXLEN]]] "Markov" mode (see documentation)
--external=MODE external mode or word filter
--stdout[=LENGTH] just output candidate passwords [cut at LENGTH]
--restore[=NAME] restore an interrupted session [called NAME]
--session=NAME give a new session the NAME
--status[=NAME] print status of a session [called NAME]
--make-charset=FILE make a charset, FILE will be overwritten
--show[=LEFT] show cracked passwords [if =LEFT, then uncracked]
--test[=TIME] run tests and benchmarks for TIME seconds each
--users=[-]LOGIN|UID[,..] [do not] load this (these) user(s) only
--groups=[-]GID[,..] load users [not] of this (these) group(s) only
--shells=[-]SHELL[,..] load users with[out] this (these) shell(s) only
--salt-list=SALT[,SALT,..] load just the specified salt(s)
--salts=[-]COUNT[:MAX] load salts with[out] at least COUNT passwords only
(or in range of COUNT to MAX)
--pot=NAME pot file to use
--format=NAME force hash type NAME:
DES/BSDI/MD5/BF/AFS/LM/NT/XSHA/PO/raw-MD5/MD5-gen/
IPB2/raw-sha1/md5a/hmac-md5/phpass-md5/KRB5/bfegg/
nsldap/ssha/openssha/oracle/oracle11/MYSQL/
mysql-sha1/mscash/lotus5/DOMINOSEC/
NETLM/NETNTLM/NETLMv2/NETNTLMv2/NETHALFLM/MSCHAPv2/
mssql/mssql05/epi/phps/mysql-fast/pix-md5/sapG/
sapB/md5ns/HDAA/raw-md4/md4-gen/sha1-gen
--subformat=NAME Some formats such as MD5-gen have subformats
(like md5_gen(0), md5_gen(7), etc).
This allows them to be specified.
If the name is LIST, then john will show all
subformats (help mode), and exit
--save-memory=LEVEL enable memory saving, at LEVEL 1..3
--mem-file-size=SIZE max size a wordlist file will preload into memory
(default 5,000,000 bytes)
--field-separator-char=c Use 'c' instead of the ':' for processing fields
(input file, pot file, etc)
--fix-state-delay=N only determine the wordlist offset every N times
It is a performance gain to delay a while
(say 100 loops for a fast algorithm).
For slow algorithms it should not be used
.
0 comments:
Post a Comment