Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Mon, 19 Dec 2005 22:21:17 +0300
From: Solar Designer <solar@...nwall.com>
To: john-users@...ts.openwall.com
Subject: Re: Can john be used to crack pwds for windows2000 professional?

On Mon, Dec 19, 2005 at 03:55:09PM +0530, maneesh kohli wrote:
> Can john be used to crack pwds for windows2000 professional?

Yes.

> I have used cachedump-1.0 utility to dump encrypted pwds.

That's your mistake.  The hashes dumped with cachedump require a patched
version of John the Ripper, but you do not really need to be cracking
those hashes.

Instead, you may dump LM hashes with one of the pwdump tools.  There's a
collection of such tools here:

	ftp://ftp.openwall.com/pub/projects/john/contrib/win32/pwdump/

Brief descriptions for some of them can be found here:

	http://www.openwall.com/passwords/nt.shtml

I'd start with pwdump2.

LM hashes are supported by John the Ripper out of the box.

-- 
Alexander Peslyak <solar at openwall.com>
GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598
http://www.openwall.com - bringing security into open computing environments

Was I helpful?  Please give your feedback here: http://rate.affero.net/solar

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ