Date: Sat, 22 Oct 2005 03:40:54 +0200 (CEST) From: sebastian.rother@...erlin.de To: john-users@...ts.openwall.com Subject: Re: CHange-Request > On Mon, Oct 17, 2005 at 05:22:32PM +0200, sebastian.rother@...erlin.de > wrote: >> As far as I can see John isn't able to decrypt a SAM-File wich is >> protected by SYSKEY. > > John relies on external (third-party) tools to provide the LM hashes in > PWDUMP format. > >> BKHIVE is an OpenSOurce-Tool wich uses the >> "system"-file to use the SYSKEY (wich is stored at the HDD by default) >> to >> decrypt the SAM (so that it isn't protected with syskey anymore). >> >> Is it possible that John could adapt this functionality like john uses >> "unshadow" to merge the passwd and shadow files? > > This kind of Windows-specific functionality is not currently planned. > >> If you need the Sourcecode I'm able to e-Mail it to you. >> The original website is down because the student who wrote the software >> isn't student anymore. >> >> The Archiv dosn't include any License. > > Actually, the copy of the source code for BKHIVE that I found has a > license statement in every source file. There's one serious > restriction: > > You may not use this work for commercial purposes. > > This is sufficient to prevent the inclusion of this code in John, since > I do not want to similarly disallow commercial uses of John. > > However, re-coding this wouldn't be hard. I understand this as a "yes" and hope the support will be enabled in a new stable version. :-) You shouldn't take "Licenses" too seriously.. at least if you#re from europe they mean (mostly) nothing. ;-))) Kind regards, Sebastian -- Don't buy anything from YeongYang. Their Computercases are expensiv, they WTX-powersuplies start burning and their support refuse any RMA even there's still some warenty.
Powered by blists - more mailing lists
Powered by Openwall GNU/*/Linux - Powered by OpenVZ