Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 24 Jan 2012 02:00:31 +0400
From: Solar Designer <solar@...nwall.com>
To: john-dev@...ts.openwall.com
Subject: Re: Jumbo future

On Mon, Jan 16, 2012 at 02:35:31AM +0100, magnum wrote:
> On 01/16/2012 12:12 AM, Solar Designer wrote:
> > Here's one more: Drupal 7 uses a revision of phpass with MD5 replaced
> > with SHA-512 and hashes cut at 258 bits (yes, 258 - that's a multiple of 6).
> > These hash encodings use the $S$ prefix.  Perhaps we should support them.
> 
> I'll add this, and other things you mentioned earlier, to the wiki
> wish-list.

Thanks.  Here's one more to add: it'd be nice for JtR to support SIP
challenge/responses, essentially integrating SIPcrack into JtR:

http://www.backtrack-linux.org/wiki/index.php?title=Pentesting_VOIP&oldid=789#Cracking_SIP_Digest_response_hashes
http://packetstormsecurity.org/files/author/2096/

Somehow BackTrack wiki mentions version 0.3, but Packetstorm only has
version 0.2.

We may integrate the existing code into a JtR format or start from
scratch.  SIPcrack 0.2 (and I guess 0.3 as well) is under 3-clause BSD
license, which is acceptable (although not perfect).

Alexander

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ