RE: John The Ripper For Win32

From: Keenen Milner (kmilner_at_ghcllc.com)
Date: 10/04/05

  • Next message: Thomas Biege: "Call for Papers - DIMVA 2006" 
    Date: Tue, 4 Oct 2005 08:16:50 -0700
To: <pen-test@securityfocus.com>

    Heck, you don't even need to dual boot Linux for this... Boot from a
    Linux CD (like Knoppix - www.knoppix.org/) and you are good to go. When
    you are done, just reboot and you have your Windows computer back.
    Cygwin is nice but live CDs are great.

    Best Regards,
    Keenen
    ____________________________________________________
    Keenen Milner
    Lead Partner - Computer Forensics and Technology Consulting
    GHC Information Systems, LLC
    Grobstein Horwath and Company, LLP
    15233 Ventura Boulevard, 9th Floor
    Sherman Oaks, California 91403
    (818) 325-8466 - voice
    (818) 325-8566 - fax
    ____________________________________________________
     

    -----Original Message-----
    From: Miguel Dilaj [mailto:Miguel.Dilaj@nccgroup.com]
    Sent: Monday, October 03, 2005 1:15 AM
    To: pen-test@securityfocus.com
    Subject: RE: John The Ripper For Win32

    Disclaimer: very basic message below. Mr. Mod: feel free to send it to
    /dev/poo if you consider it innapropriate for pen-test.

    Hi add,

    Just my $0.01 for everyone who doesn't know it: you can get Cygwin for
    free (www.cygwin.com) and compile John (and many *NIX tools, I've to
    add) yourself. Just ensure to install "make" and "gcc" during Cygwin
    installation or after installing the barebones Cygwin.
    Compiling John is quite straightforward, simply put the tarball
    somewhere (I kind of like /usr/local in my Cygwin), extract it:

    $ tar xzvf john-1.6.39.tar.gz

    Go into the source directory:

    $ cd john-1.6.39/src

    And compile it:

    $ make win32-cygwin-x86-mmx

    (You can compile win32-cygwin-x86-any if you don't have MMX extensions).

    Then at least pinch the *.chr files from a vanilla John 1.6, or create
    your own (RTFM).
    Cheers,

    Miguel
     
    PD: John on Cygwin will be sligthly slower than on a real Linux box, be
    brave and install Linux (dual booting Linux/Win is cool).
    PPD: yes, you can install it on Linux in a Vmware virtual machine on
    your Windows, but it'll be even slower!

    -----Original Message-----
    From: Vince Cambell [mailto:vincecambell@outgun.com]
    Sent: 02 October 2005 16:43
    To: pen-test@securityfocus.com
    Subject: John The Ripper For Win32

    For those on the list doing password cracking as part of their
    penetration testing, I came across the latest development version
    (1.6.39) of John The Ripper compiled for Win32.

    You can find it at: www.info-sec.ca/john/john.html

    Regards,
    Vince

    ------------------------------------------------------------------------
    ------
    Audit your website security with Acunetix Web Vulnerability Scanner:

    Hackers are concentrating their efforts on attacking applications on
    your website. Up to 75% of cyber attacks are launched on shopping carts,
    forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
    servers are futile against web application hacking. Check your website
    for vulnerabilities to SQL injection, Cross site scripting and other web
    attacks before hackers do!
    Download Trial at:

    http://www.securityfocus.com/sponsor/pen-test_050831
    ------------------------------------------------------------------------
    -------

    ------------------------------------------------------------------------------
    Audit your website security with Acunetix Web Vulnerability Scanner:

    Hackers are concentrating their efforts on attacking applications on your
    website. Up to 75% of cyber attacks are launched on shopping carts, forms,
    login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
    futile against web application hacking. Check your website for vulnerabilities
    to SQL injection, Cross site scripting and other web attacks before hackers do!
    Download Trial at:

    http://www.securityfocus.com/sponsor/pen-test_050831
    -------------------------------------------------------------------------------

  • Next message: Thomas Biege: "Call for Papers - DIMVA 2006"

    Relevant Pages

    • Linux Security cds (Was Windows XP SP2 and Security Tools)
      ... > to a Linux box on VMware in the DMZ. ... Windows XP SP2 and Security Tools ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ...
      (Pen-Test)
    • Re: Re[2]: Pentesting a WEP-protected wifi network
      ... > are drivers for linux - ipw2200, I use them with Gentoo distr. ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Cross site scripting and other web attacks before hackers do! ...
      (Pen-Test)
    • Re: policy-based password cracker
      ... John the Ripper might have all you want, if you have a closer look at the rules in john.conf and use bruteforce-mode only. ... Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. ... Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! ...
      (Pen-Test)
    • RE: Whitespace in passwords
      ... Subject: Whitespace in passwords ... Try the password of your choice with alt 255 in the middle currently things like lopht and john don't get near it ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Cross site scripting and other web attacks before hackers do! ...
      (Pen-Test)
    • Some Projects From freeLSD(Linux Support Developments)
      ... Primary goals are create modern sound driver for Linux ... Website: http://www.berlin-consortium.org/ ... Linux open source community with the hope that some or all of it will ...
      (comp.os.linux.misc)