Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <7b3298150602170544g32667c87hf6601f1e78753e77@mail.gmail.com>
Date: Fri, 17 Feb 2006 14:44:54 +0100
From: thomas springer <thomas.springer@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: JtR 1.7 f. Win with NTLM-Hashes

The errors not libdes-related (i have it installed, for i compiled
1.6.37 with the ntlm-patch before).

I needed the thing for a presentation yesterday - so i did a quick and
dirty-version and threw away the stripped-down patch. Give me until
Monday - I promise to report the errors and put together a complete
binary version with sourcecode, modified patch and a bit of
documentation.

If someone wants to fiddle with the plain binary, get it on
www.echt-pervers.de/jtr17_patched.zip

And Hey, Alex: JtR 1.7 is running fine and fast! Thank you!

from the readme.txt
>This is a patched Version of John the Ripper 1.7 compiled against
cygwin that supports >NTLM- and LM-Hashes.
>It is patched using a stripped down Jumbo-Patch
>(http://www.openwall.com/john/contrib/john-1.7-all-3.diff.gz) and
SHOULD add support for
>NT and LM!
>
>* Eggdrop (-format=bfegg)
>* Dominosec (-format=dominosec)
>* Lotus v5 Proprietary (-format=lotus5)
>* Invision Power Board 2.x salted MD5 (-format=ipb2)
>* Apache MD5 (-format=md5a)
>* Post.Office MD5 (-format=po)
>* MySQL (-format=mysql)
>* MS-Cache-Hash (-format=mscash)
>* NTLM (-format=NT)
>* LanManager (-format=LM)
>* Raw MD5 (-format=raw-md5)
>* Raw SHA1 (-format=raw-sha1)
>
>It does NOT support Kerberos and NSLDAP!
>
>You'll need the usual JtR-Stuff AND the cygwin-dll's (get em at
www.cygwin.com) >installed.
>
>Usage:
>NTLM-crack:
>john <pwfile> -format=NT
>
>LM-crack:
>john <pwfile> -format=LM
>
>thomas.springer@...il.com

On 2/17/06, Solar Designer <solar@...nwall.com> wrote:
> On Fri, Feb 17, 2006 at 01:01:09PM +0100, thomas springer wrote:
> > I don't know if all of you are aware of this, but there is an NTLM
> > (MD4)-Patch for John 1.7 embedded in the "Jumbo Patch" at
> > http://www.openwall.com/john/contrib/john-1.7-all-3.diff.gz.
> >
> > So far so good.
> >
> > After applying the Jumbo-Patch on Cygwin, compilation failed on some
> > parts (kerberos and other).
>
> Most likely, you did not have libdes installed.  Some of the patches
> included in the jumbo patch require libdes.
>
> FWIW, I think someone (Erik?) should update the patch to compile with
> OpenSSL instead of with the standalone libdes.  This should be trivial
> to do.  It is far more common to readily have OpenSSL installed.
>
> > Compiling worked after ripping out a few
> > parts - the patched version is undocumented (have to look at the
> > patchcode to get the correct format-options), but works fine and fast
> > on LM and NTLM-Hashes.
> >
> > Did anybody got to compile the complete Jumbo-Patch with JtR 1.7 under Windows?
> >
> > I'll be happy to release a binary and at least rudimentary documented
> > patched windows-binary, but maybe somebody else got the "whole thing"
> > to work?
>
> If you submit it (or if someone else does), I'd be happy to include such
> a Windows binary in contrib.
>
> Thanks,
>
> --
> Alexander Peslyak <solar at openwall.com>
> GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598
> http://www.openwall.com - bringing security into open computing environments
>
> Was I helpful?  Please give your feedback here: http://rate.affero.net/solar
>
> --
> To unsubscribe, e-mail john-users-unsubscribe@...ts.openwall.com and reply
> to the automated confirmation request that will be sent to you.
>
>


--
thomas.springer@...il.com
[nach mir der synflood.]

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.