Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 24 Apr 2012 22:02:03 +0200
From: magnum <>
Subject: Re: Cracking Office 2007 files with JtR!


I added proper Unicode support to the Office format. Please have a look
at how it's done, it's very simple (all you need is in unicode.h).

It's not much tested yet. For any and all future Unicode formats, please
always add FLG_UNICODE. This flag should be added for all formats that
in some way use Unicode, even if there's only simple type-cast support
like what you had in there. After adding full support (as in this patch)
we also add FLG_UTF8, which says the support is "complete".

BTW I also saw that OMP scales very poorly but I don't know why yet.


On 04/02/2012 07:20 PM, Dhiru Kholia wrote:
> On Mon, Apr 2, 2012 at 10:30 PM, Solar Designer <> wrote:
>> On Mon, Apr 02, 2012 at 09:04:52PM +0530, Dhiru Kholia wrote:
>>> I have just committed a rough (it is in heavy debugging stage) patch
>>> to crack Office 2007 documents with JtR.
>> Wow.  Thank you!
>> Well, but it wouldn't work yet since you had the password being tested
>> hard-coded. ;-)  I've corrected this with the attached patch (it also
>> speeds things up by a whopping 1% here).
> heh, my bad! Will apply your patch to git.
>>> Performance on Atom(TM) CPU N270,
>>> $ ../run/john -format=office -t
>>> Benchmarking: Office [32/32]... DONE
>>> Raw:    30.3 c/s real, 30.3 c/s virtual
>> That's 50k iterations of SHA-1.  Definitely something to have on GPU.
>> And no need to move AES to GPU then.
> True.
>> Why is the length limited to 8?  Can't Office 2007 files have longer
>> passwords?
> Password can be longer. Fixing this too. Thanks for the early report.

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.