Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Sat, 29 Dec 2012 05:43:45 +0000
From: John Hall <JohnH@...tworking.com>
To: "'john-users@...ts.openwall.com'" <john-users@...ts.openwall.com>
Subject: RE: pwsafe2john - How to use this program, preferably
 in Windows or in Linux if Windows is a no-go?

Luis,

Thanks for the reply.

Downloaded the zip file. (Am using Fedora 17 now)

In the download /src folder tried to run Makefile 
Says Makefile command not found.

So I tried 
./Makefile 
and it says Line 8 CC command not found, Line 9 CC command not found, Line 10 AS command not found, etc.

Also tried
./Makefile clean Linux-x86-native (Not sure this is the correct keyword)
Got the same as above Line 8 CC command not found.

So I presume the Makefile commands are not being understood as they seem to just be setting variables for later on.

What should I be doing?

John

-----Original Message-----
From: Luis Santana [mailto:hacktalk@...ktalk.net] 
Sent: Friday, December 28, 2012 8:20 PM
To: john-users@...ts.openwall.com
Subject: Re: [john-users] pwsafe2john - How to use this program, preferably in Windows or in Linux if Windows is a no-go?

Download the .zip file and then use the makefile to compile.

Here is a direct link to the zip file

https://github.com/magnumripper/JohnTheRipper/archive/unstable-jumbo.zip


Luis Santana : Founder - HackTalk Security http://hacktalk.net hacktalk@...ktalk.net HackTalk Security - Security From The Underground



On Dec 28, 2012, at 10:50 PM, Dhiru Kholia <dhiru.kholia@...il.com> wrote:

> On Saturday 29 December 2012 06:31 AM, John Hall wrote:
>> 1. I tried the following under Ubuntu (running in a VM on Win 7):
>> git clone git://github.com/magnumripper/magnum-jumbo
> 
> You should be using https://github.com/magnumripper/JohnTheRipper
>> gcc pwsafe2john.c -o pwsafe2john  # from src/ folder That complained 
>> that there was an undefined reference to 'main'
>> 
>> So I changed the pwsafe2john name in the pwsafe2john.c file to main 
>> Then recompiled with no errors (not sure this was the right 'fix')
> Just building john itself is enough to build "pwsafe2john" program which gets put in "run" sub-folder.
> 
>> Then ran
>>    ./pwsafe2john pwsafe.psafe3 > pwsafedump
>> 
>> That complained "Couldn't find PWS3 magic string. Is this a Password Safe file?"
>> 
>> Well it is a Password Safe file, but from a Windows environment, not sure if that matters.
>> 
>> Using UltraEdit on the pwsafe.psafe3 file, it shows the first 4 characters as PWS3. So I think the file is the correct one.
> 
> This one is a puzzling. I just tested pwsafe2john with samples downloaded from http://openwall.info/wiki/john/sample-non-hashes and it works fine. The samples were mostly generated on M$ Windows.
> 
> Can you try running pwsafe2john on files inside http://openwall.info/wiki/_media/john/Sample-Password-Safe-Safes.tar archive?
> 
>> So I am a bit of a fish out of water on this program.
>> 
>> Any suggestions on how to successfully extract the hash from the pwsafe.psafe3 file so I can feed it to JTR to try to crack?
> 
> No worries. After some debugging and patching it will work :-)
> 
> - Dhiru

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ