Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <cce9cf53626da8771ffcb09aa74a6a9a@smtp.hushmail.com>
Date: Sat, 18 Jul 2015 02:56:39 +0200
From: magnum <john.magnum@...hmail.com>
To: john-users@...ts.openwall.com
Subject: Re: Re:  Re: restore difficult zip password

On 2015-07-18 01:05, rysic wrote:
> I configured my john to gues max 4 length passwords:
>
> [Incremental:Custom]
> File = $JOHN/custom.chr
> MinLen = 0
> MaxLen = 4
>
> (...)

This is not needed at all, just use -max-len=4

> And then I'm creating encrypted zip file (password is "asd")
>
> linux-kq4w:/home/kamil/john-1.8.0-jumbo-1/run # zip --encrypt test6.zip ../../Pobrane/john-1.8.0-jumbo-1.tar.gz
> Enter password:
> Verify password:
>    adding: ../../Pobrane/john-1.8.0-jumbo-1.tar.gz (deflated 45%)
>
> generating hash file:
> linux-kq4w:/home/kamil/john-1.8.0-jumbo-1/run # ./zip2john test6.zip > test6.h
> ver 14  efh 5455  efh 7875  test6.zip->../../Pobrane/john-1.8.0-jumbo-1.tar.gz PKZIP Encr: 2b chk, TS_chk, cmplen=32762705, decmplen=59392000, crc=9FEB9743
>
> And try to crack it:
> linux-kq4w:/home/kamil/john-1.8.0-jumbo-1/run # ./john test6.h
> Loaded 1 password hash (PKZIP [32/64])
> Will run 4 OpenMP threads
> Press 'q' or Ctrl-C to abort, almost any other key for status
> 0g 0:00:00:08 DONE 3/3 (2015-07-18 00:46) 0g/s 9175Kp/s 9175Kc/s 9175KC/s |C%|..||||
> Session completed

What version of "zip" are you using? This looks like a bug in our pkzip 
format, and if it is, it's a really really bad one.
At least one obscure bug was fixed since Jumbo-1, so you might want to 
try building latest code from GitHub.

> You wrote about -stdout. I saw that in documentation but it is not working:
>
> linux-kq4w:/home/kamil/john-1.8.0-jumbo-1/run # ./john -stdout test6.h
> Invalid options combination or duplicate option: "-stdout"

It's not used with a hash file. It's used with a mode, like this:

$ ../run/john -inc:digits -stdout | head
Press 'q' or Ctrl-C to abort, almost any other key for status
12345
123456
11111
121288
123444
121290
010189
010190
012222
012233

magnum


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.