Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 8 Feb 2012 09:15:38 +0100
From: A BC <>
Subject: Re: DES - not "traditional DES-based" - (VNC hash) with JtR


On Wed, Feb 8, 2012 at 12:48 AM, Rich Rumble <> wrote:

> I've sent an email to john-dev already containing pcap's of 7 different
> vnc sessions, using 3 different VNC protocols (see wikipedia)

> You can get them here:

Hey, thanks. But : what is the password you used ? And to be useable with
JtR, we have to extract by hand the interesting information.

I have seen your project. It is intersting because it can read pcaps, but
it uses JtR piped into stdin, which we discussed with Alexander, and is not
very good.

My FakeServer is very very simple : 30 lines of Python script. And it
prints the challenge/response.
Ok, the protocol I use is for 3.7, but it should work with 3.3 because it
uses the weakest authentification protocol.

I am not yet subscribed to the john-dev list. Please forward my answer.
I will join it asap.


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.