Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: Etc/shadow file and john

Re: Etc/shadow file and john

From: Sherwyn Williams <sherwill22_at_tmail.com>
Date: Thu, 28 Jul 2005 06:47:39 -0400

I am not certain, however way is the default for
Encrypting shadow passwords in unix and linux. System type is
slackware.

On Wed, 27 Jul 2005 22:45, Leandro Reox wrote:
> An effective method to get passwords is to pass them trough specific
> generated rainbow tables with a tool like CAIN.
> Is this hash encrypted with md5 or another known hashing algorithm ?
>
> Cheers
>
> --
> Leandro Reox
> http://www.securearg.net/ Secure from the source
> -----Original Message-----
> From: Sherwyn Williams [mailto:sherwill22_at_tmail.com]
> Sent: Wednesday, July 27, 2005 1:57 PM
> To: pen-test_at_securityfocus.com
> Subject: Etc/shadow file and john
>
> I am doing an assesment for passwords on a network, after getting the
> password file I piped the output to a text file, tried to run that
> against John and can't get any luck with the program. Do anyone here
> uses any other password programs, and is there a better format than a
> text file to store the out of the etc/shadow when trying to get the
> passes.
> Sherwyn Williams
> Technical Consultant
> Sherwill22_at_tmail.com
Sherwyn Williams
Technical Consultant
Sherwill22_at_tmail.com
Received on Jul 28 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]