John -incremental:lanman crackme.txt (letters, numbers, and some special characters) John -incremental:digits crackme.txt (only numbers) Usage: john -incremental:alpha crackme.txt (only letters) I don't use wordlists, so if you want to use this option I wont help you. Rules: Lets you define the rules for using wordlists.
Usage: john -wordfile:password.lst crackme.txt This is quicker than the default (bruteforce) attack, but I don't recommend this because it doesn't always find a match. What this does is tries every word in the list until it finds a match or you reach the end of the list. Wordfile: Uses a wordlist (basically a dictionary attack). This is only recommended for weak passwords as it includes only a few rules and a small wordlist. Here are a list of the options and what they do. Save the file as crackme.txt (just an example) and go to the prompt and type 'john crackme.txt' (no quotes obviously). Now put a username (just any old name will do) in front of it with a colon separating the two. Just create a text file and paste in the password. If you want to crack it (why else would you be here?) you need to make your own file. How to make a crackable file: Let's say that for some reason you have a DES encrypted password but no file. This is not as effective but it's quicker (more on that later). If you're an impatient ass you can use a word list. It will use bruteforce to decrypt all of the passwords in the file. In fact, you don't really need any of these options. savemem:LEVEL enable memory saving, at LEVEL 1.3 format:NAME force ciphertext format NAME salts:COUNT load salts with at least COUNT passwords only shells:SHELL load users with this (these) shell(s) only groups:GID load users of this (these) group(s) only users:LOGIN|UID load this (these) user(s) only makechars:FILE make a charset, FILE will be overwritten session:FILE set session file name to FILE stdout no cracking, just write words to stdout external:MODE external mode or word filter wordfile:FILE -stdin wordlist mode, read words from FILE or stdin Usage: /WINDOWS/DESKTOP/JTR/JOHN-16/RUN/john John the Ripper Version 1.6 Copyright (c) 1996-98 by Solar Designer Go to the Start menu, click Run, type 'command' (no quotes) and press enter.
Step 3: In windows open the command prompt. JTR is a program that decyrpts Unix passwords using DES (Data Encryption Standard). Remember, this is a newbie tutorial, so I wont go into detail with all of the features. I wrote this tutorial as best I could to try to explain to the newbie how to operate JTR.
0 kommentar(er)
