Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <fb5f64d10520861d769ad5dfc31bf688@vqs86.v3.pair.com>
Date: Thu, 20 Feb 2014 10:46:52 -0800
From: Jeff Keller <jakeller@...r.com>
To: <john-users@...ts.openwall.com>
Subject: Re: Need assistance with encrypted Time Machine sparsebundle

 

On 02/20/2014 09:21, magnum wrote: 

> On 2014-02-20 09:21, Jeff
Keller wrote:
> 
>> Hello all- while switching to a new computer I
discovered that my Time Machine backup (stored on my NAS) was encrypted.
Unfortunately, by the time I'd realized this, I'd already zeroed-out the
drives on my old computer, so I couldn't go back and see what the
password was. I now have a 550GB sparsebundle sitting on the NAS that I
cannot open, because I have no idea what the password is (it's nothing I
normally use - I imagine the 'hint' i cannot see would've helped). I
purchased John Pro for the Mac and cannot figure out how to get the hash
from the dmg file and then how to start trying to find the password. I
consider myself very computer-saavy but this one's a bit much for me. If
anyone has advice on how to get started, I would greatly appreciate
it!
> 
> JtR Pro can't crack a dmg afaik. You need to build from
bleeding-edge 
> source available at GitHub.
> 
> magnum

Huh, from
reading
this:
http://blog.whitehatsec.com/cracking-aes-256-dmgs-and-epic-self-pwnage/


I was under the impression that the "off the shelf" version of JtR
could do it. I did reach out to the guys mentioned in the article
(Stricture) but haven't heard back yet. This is sort of the digital
version of your house burning down! Hope someone can help out. 

Jeff


---
Jeff Keller
Senior Writer, dpreview.com
 

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.