Date: Fri, 18 Apr 2014 15:03:02 -0400 From: Jeff OTool <jeffotool1@...il.com> To: john-users@...ts.openwall.com Subject: Re: BMC Patrol password representations Thanks Magnum and Nicolas Nicolas, I am using a BMC tool called ctltool.exe but I suspect you may be correct about a hardcoded key.... ctltool.exe will take an existing ctl file, as a template, and produce a modified template based on a series of prompts from the user. This is how I am generating the encrypted passwords. Apparently this exe also requires the prence of a dll called bmcpwk.dll. If the dll is not present I get the following error message ctltool.exe install.ctl install_test.ctl Failed to load security library bmcpwk.dll, err=Cannot get intial values of module stats: No such file or directory I appreciate your responses Jeff On Fri, Apr 18, 2014 at 9:50 AM, Nicolas Collignon < nicolas.collignon@...acktiv.com> wrote: > > > > Great, more fun! No need to apologize, you have come to the right place. > > You supplied pretty good data, there are several clues in it. I'll be > back > > within 24h. I hope someone beats me to it because I believe there are > > several stages in solving this. > > > > magnum > > > > > It smells like a hardcoded ECB key will be found in binary > nco_patrol_encrypt :) > Good luck >
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.