Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 12 Aug 2013 18:56:53 +0200
From: Sam <blue-t@....de>
To: john-users@...ts.openwall.com
Subject: Re: Are BKS/Berkely -Keystores for Java supported yet?

Am 12.08.2013 13:17, schrieb Dhiru Kholia:
> On 08/11/13 at 11:31am, Sam wrote:
>> I am currently trying to estimate the security of an android
>> application. The certificate which is used quite heavily in the
>> application only is available as bks file which can''t be opened
>> without password.
>> http://docs.oracle.com/cd/E13214_01/wli/docs70/b2bsecur/keystore.htm
>> Therefore my question, is it possible to use JtR for this process yet?
> Hi Sam,
>
> From the link,
>
> "The WebLogic Keystore provider: Utilizes the JDK bundled Java KeyStore
> (JKS) provider, which implements the keystore as a file".
>
> So, it seems that this format might be supported already.
>
> Can you please post a sample ".bks" file with a known password?
>
> --
> Dhiru
Ok here we go,
sample bks keystore that includes the CharlesProxy Certificiate with
"secret" as the password

Sam

Download attachment "secret.bks" of type "application/octet-stream" (1227 bytes)

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.