Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Fri, 16 Jan 2015 11:00:35 +0100
From: Nicolas Collignon <nicolas.collignon@...acktiv.com>
To: john-users@...ts.openwall.com
Subject: Re: Cisco ACS repository passwords decryption / samples request

Thanks Nicolas, i think i fixed the code. The password encryption
scheme truncates the password anyway.

Updated script: http://www.synacktiv.com/ressources/cisco_acs_repo_decrypt.py

On Mon, Dec 8, 2014 at 10:02 PM, Nicolas RUFF <nicolas.ruff@...il.com> wrote:
>> If anyone is able to provide repository passwords hashes for the
>> following passwords, i could check/fix the code:
>>   - @A1aaaaaaaaaaaa
>>   - @A2aaaaaaaaaaaab
>>   - @A3aaaaaaaaaaaabc
>>   - @A4aaaaaaaaaaaaa@...aaaaaaaaaaaa
>
>
> cisco/admin# config
> Enter configuration commands, one per line.  End with CNTL/Z.
> cisco/admin(config)# repo test
> cisco/admin(config-Repository)# user test password plain @A1aaaaaaaaaaaa
> cisco/admin(config-Repository)# do sho run | include test
> repository test
>   user test password hash 832d2fee63a5a7ff606cd4a2aa5d8efee96ff24b
>
> cisco/admin(config-Repository)# user test password plain @A2aaaaaaaaaaaab
> cisco/admin(config-Repository)# do sho run | include test
> repository test
>   user test password hash f19cc672feb1cacc8972b4689d768e1e13075466
>
> cisco/admin(config-Repository)# user test password plain @A3aaaaaaaaaaaabc
> cisco/admin(config-Repository)# do sho run | include test
> repository test
>   user test password hash 0a077e000d7c15ccf30a00c1097cc452423254b4
>
> cisco/admin(config-Repository)# user test password plain @A4aaaaaaaaaaaabc
> cisco/admin(config-Repository)# do sho run | include test
> repository test
>   user test password hash 562d1043306b82aae4da9cdccc82376d408a7f49
>
> cisco/admin(config-Repository)# user test password plain
> @A4aaaaaaaaaaaaa@...aaaaaaaaaaaa
> cisco/admin(config-Repository)# do sho run | include test
> repository test
>   user test password hash 562d1043306b82aa7a752f9fb4d9b40cea20d610
>
> Ping me if you need more.
>
> Regards,
> - Nicolas RUFF

Powered by blists - more mailing lists

Your e-mail address:

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.