Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Fri, 13 May 2005 15:24:32 -0700 (PDT)
From: Whom Ever <amwhoever@...oo.com>
To: john-users@...ts.openwall.com
Subject: LANMAN and NT Hash ?s...basic

I'm sorry for asking a noob question but I have a sam
file that I ran 
GetHashes.exe (SamInside) on and I'm not sure how to
get JtR to work on the 
NT hash (really XP hash) part.  It autodetects the
LANMAN portion and goes to 
work, I tried the --format option but none of the
other options loaded any 
passwords.  JtR can crack NT hashes, right?  And XP
uses NT hashes too?  When 
I ran GetHashes I did NOT have the SYSTEM file so that
may be part of the 
problem...not sure.

Example from john.pot (not a working one...I modified
some data):
User:57Q7T4R23E@:1007:14806rd271e60f5re2549d67eb6ef6b1:::

Now, the NT hash is after the 1007: right?

It's my understanding with 2k and XP that if you use a
password longer than 14 
characters nulls are entered in the LANMAN portion so
in that case you have 
to use the NT hash portion, right?

Also, if JtR does do NT hash, wouldn't a module to get
the LANMAN and then try 
the 2^n letter case combinations to run against the NT
hash be fairly easy to 
add.  I'm probably way off base here or this already exists!


		
Discover Yahoo! 
Find restaurants, movies, travel and more fun for the weekend. Check it out! 
http://discover.yahoo.com/weekend.html 

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.