john-users - Re: Are BKS/Berkely -Keystores for Java supported yet?

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Date: Sat, 17 Aug 2013 18:00:20 +0200
From: Sam <blue-t@....de>
To: john-users@...ts.openwall.com
Subject: Re: Are BKS/Berkely -Keystores for Java supported yet?

Am 12.08.2013 18:56, schrieb Sam:
> Am 12.08.2013 13:17, schrieb Dhiru Kholia:
>> On 08/11/13 at 11:31am, Sam wrote:
>>> I am currently trying to estimate the security of an android
>>> application. The certificate which is used quite heavily in the
>>> application only is available as bks file which can''t be opened
>>> without password.
>>> http://docs.oracle.com/cd/E13214_01/wli/docs70/b2bsecur/keystore.htm
>>> Therefore my question, is it possible to use JtR for this process yet?
>> Hi Sam,
>>
>> From the link,
>>
>> "The WebLogic Keystore provider: Utilizes the JDK bundled Java KeyStore
>> (JKS) provider, which implements the keystore as a file".
>>
>> So, it seems that this format might be supported already.
>>
>> Can you please post a sample ".bks" file with a known password?
>>
>> --
>> Dhiru
> Ok here we go,
> sample bks keystore that includes the CharlesProxy Certificiate with
> "secret" as the password
>
> Sam
The Sample file was created with http://portecle.sourceforge.net/ in
case that helps to determine which encryption is used and and how to get
the hash.
Regards
Sam

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.