MD5 password cracking
Jack The Ripper
vs.
Cisco's enable secret
$ sudo apt install john
Selecting previously unselected package john.
Preparing to unpack .../john_1.8.0-2_armhf.deb ...
Unpacking john (1.8.0-2) ...
Processing triggers for man-db (2.7.0.2-5) ...
Setting up john-data (1.8.0-2) ...
Setting up john (1.8.0-2) ...
Preparing to unpack .../john_1.8.0-2_armhf.deb ...
Unpacking john (1.8.0-2) ...
Processing triggers for man-db (2.7.0.2-5) ...
Setting up john-data (1.8.0-2) ...
Setting up john (1.8.0-2) ...
# sh run | s secret
enable secret $1$sSWq$CGWilSWbR821tNBqcnFTo.
$ echo '$1$sSWq$CGWilSWbR821tNBqcnFTo.' > /home/pi/md5_hash
$ john /home/pi/md5_hash
Created directory: /home/pi/.john
Loaded 1 password hash (md5crypt [MD5 32/32])
Press 'q' or Ctrl-C to abort, almost any other key for status
0g 0:00:00:16 11% 2/3 0g/s 1008p/s 1008c/s 1008C/s miamimiami
0g 0:00:00:24 16% 2/3 0g/s 1014p/s 1014c/s 1014C/s CHARLIE
Loaded 1 password hash (md5crypt [MD5 32/32])
Press 'q' or Ctrl-C to abort, almost any other key for status
0g 0:00:00:16 11% 2/3 0g/s 1008p/s 1008c/s 1008C/s miamimiami
0g 0:00:00:24 16% 2/3 0g/s 1014p/s 1014c/s 1014C/s CHARLIE
cisco (?)
1g 0:00:03:28 3/3 0.004807g/s 972.3p/s 972.3c/s 972.3C/s cisco
Use the "--show" option to display all of the cracked passwords reliably
Session completed
1g 0:00:03:28 3/3 0.004807g/s 972.3p/s 972.3c/s 972.3C/s cisco
Use the "--show" option to display all of the cracked passwords reliably
Session completed
$ john /home/netmag/md5_hash
Created directory: /home/netmag/.john
Loaded 1 password hash (md5crypt [MD5 32/64 X2])
Press 'q' or Ctrl-C to abort, almost any other key for status
0g 0:00:00:01 15% 2/3 0g/s 11887p/s 11887c/s 11887C/s 1chad..1chainsaw
cisco (?) -- easy password done in 15secs
1g 0:00:00:15 3/3 0.06485g/s 13116p/s 13116c/s 13116C/s cisco..cisca
Use the "--show" option to display all of the cracked passwords reliably
Session completed
Created directory: /home/netmag/.john
Loaded 1 password hash (md5crypt [MD5 32/64 X2])
Press 'q' or Ctrl-C to abort, almost any other key for status
0g 0:00:00:01 15% 2/3 0g/s 11887p/s 11887c/s 11887C/s 1chad..1chainsaw
cisco (?) -- easy password done in 15secs
1g 0:00:00:15 3/3 0.06485g/s 13116p/s 13116c/s 13116C/s cisco..cisca
Use the "--show" option to display all of the cracked passwords reliably
Session completed
Comparing JackCracking on Raspberry Pi and Laptop
-- Raspberry Pi 2 B+ is much slower than a laptop (i7 3.6GHz, 8GB RAM)
-- 15secs on laptop against 03mins28s on RPi
-- With more difficult / longer passwords it is taking even more -- up to 25hrs comparing to 13.5hrs on laptop
$ echo '$1$lzxg$Ny2blL8TiisWpTP6I//9f/' > /home/pi/md5_hash
RPi
0g 0:01:56:20 3/3 0g/s 1019p/s 1019c/s 1019C/s ashmer7
0g 0:01:56:24 3/3 0g/s 1019p/s 1019c/s 1019C/s aspladi
-- 10hrs and still running on Raspberry Pi
0g 0:10:35:38 3/3 0g/s 1010p/s 1010c/s 1010C/s booy6h
0g 0:11:01:19 3/3 0g/s 1010p/s 1010c/s 1010C/s mb48sp
0g 0:11:10:05 3/3 0g/s 1010p/s 1010c/s 1010C/s lugs35
-- and finally after 18hrs i gave up... need to use Tacacs server :D
0g 0:16:42:11 3/3 0g/s 1011p/s 1011c/s 1011C/s b1a37d
0g 0:16:43:15 3/3 0g/s 1011p/s 1011c/s 1011C/s jrji1y
0g 0:17:47:19 3/3 0g/s 1012p/s 1012c/s 1012C/s rsl4lg
0g 0:17:49:00 3/3 0g/s 1012p/s 1012c/s 1012C/s hgiros
0g 0:17:49:59 3/3 0g/s 1012p/s 1012c/s 1012C/s noudir
0g 0:18:05:44 3/3 0g/s 1013p/s 1013c/s 1013C/s cd1buy
0g 0:18:05:47 3/3 0g/s 1013p/s 1013c/s 1013C/s cdm74s
Session aborted
No comments:
Post a Comment
Thank you for your comment. Will try to react as soon as possible.
Regards,
Networ King