John the Ripper Pro password cracker for Mac OS X
John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords, although Windows LM hashes and a number of other password hash types are supported as well. John the Ripper is free and Open Source software, distributed primarily in source code form.
John the Ripper Pro builds upon the free John the Ripper to deliver a commercial product better tailored for specific operating systems. It is distributed primarily in the form of "native" packages for the target operating systems.
John the Ripper Pro is available for a number of operating systems. This web page describes the Mac OS X revision of John the Ripper Pro.
On Mac OS X, the features currently specific to Pro versions are:
On Mac OS X 10.5 (Leopard) and newer, you additionally get:
You can purchase John the Ripper Pro online with a variety of pricing options and payment methods:
Your purchase will be from FastSpring, a trusted reseller of software products and services.
Your private download directory will be created and made available to you immediately upon receipt of your payment.
Unconditional 7-day money back guarantee for credit card and PayPal payments: if you're for any reason or for no reason at all unsatisfied with the download service or the product, we will issue a refund for your order on your request if the request arrives within 7 days after your order date.
Low price guarantee: our prices on this product are the lowest you can find. If you find a better price on a commercial product with at least the same functionality, for the same operating system, with upgrades and support similar to those included with your purchase, and if you inform us within 30 days of your purchase, we will gladly refund the price difference. Shop with confidence!
Please don't hesitate to e-mail us at <orders at openwall.com> if you experience any problems placing an order or completing your download, or to request a refund.
The following password hash types are currently supported (and more are planned):
Support for Mac OS X 10.7 Lion salted SHA-512 hashes is planned - please ask us about it so that we know whether there's demand. (Even though John the Ripper runs on Macs, the primary intended use is to audit password hashes off of other systems.)
You may browse the generic documentation for John the Ripper online. Also relevant is our presentation on the history of password security.
There's a mailing list where you can share your experience with John the Ripper and ask questions. Please be sure to specify an informative message subject whenever you post to the list (that is, something better than "question" or "problem"). To subscribe, send an empty message to <john-users-subscribe at lists.openwall.com> or enter your e-mail address below. You will be required to confirm your subscription by "replying" to the automated confirmation request that will be sent to you. You will be able to unsubscribe at any time and we will not use your e-mail address for any other purposes or share it with a third party. The list archives are available on MARC and Gmane, as well as locally.
There's a proactive password strength checking module for PAM-aware password changing programs, which can be used to prevent your users from choosing passwords that would be easily cracked with programs like John.
We may help you integrate proactive password strength checking with pam_passwdqc into your OS installs, please check out our services.
Came here looking for password recovery for popular file formats (such as Word, Excel, or PDF documents, or ZIP archives) rather than ways to detect weak OS passwords? You'll find that kind of software at ElcomSoft and also in the collection of pointers to password recovery resources available locally.