Found something useful? Don't forget to leave a comment!

Monday, December 1, 2008

John The Ripper for Windows

John the Ripper, everyone's favorite password cracker, is a highly capable tool that (with the right patches) can handle just about any hash you throw its way. It seems that Windows binaries are scarce, so I've taken the liberty of sharing my Cygwin-compiled JtR with the uber-awesome jumbo patch:

And here's a john --test benchmark summary from a Core Duo T2300 1.66 GHz/1GB RAM/WinXP computer:

Benchmarking: Traditional DES [128/128 BS SSE2]... DONE
Many salts:    601864 c/s
Only one salt:    554734 c/s

Benchmarking: BSDI DES (x725) [128/128 BS SSE2]... DONE
Many salts:    21058 c/s
Only one salt:    20842 c/s

Benchmarking: FreeBSD MD5 [32/32]... DONE
Raw:    4196 c/s

Benchmarking: OpenBSD Blowfish (x32) [32/32]... DONE
Raw:    282 c/s

Benchmarking: Kerberos AFS DES [48/64 4K MMX]... DONE
Short:    224411 c/s
Long:    588613 c/s

Benchmarking: LM DES [128/128 BS SSE2]... DONE
Raw:    4526K c/s

Benchmarking: NT MD4 [128/128 SSE2 + 32/32]... DONE
Raw:    6734K c/s

Benchmarking: Mac OS X 10.4+ salted SHA-1 [32/32]... DONE
Many salts:    1446K c/s
Only one salt:    1215K c/s

Benchmarking: M$ Cache Hash [Generic 1x]... DONE
Many salts:    8473K c/s
Only one salt:    3243K c/s

Benchmarking: Apache MD5 [32/32]... DONE
Raw:    4196 c/s

Benchmarking: HMAC MD5 SSE2 [hmac-md5 SSE2]... DONE
Raw:    1675K c/s

Benchmarking: Post.Office MD5 [STD]... DONE
Many salts:    1588K c/s
Only one salt:    1516K c/s

Benchmarking: Raw MD5 [raw-md5]... DONE
Raw:    2461K c/s

Benchmarking: IPB2 MD5 [Invision Power Board 2.x salted MD5]... DONE
Many salts:    1367K c/s
Only one salt:    853888 c/s

Benchmarking: Raw SHA-1 SSE2 [raw-sha1 SSE2]... DONE
Raw:    2026K c/s

Benchmarking: Kerberos v5 TGT [krb5 3DES (des3-cbc-sha1)]... DONE
Raw:    18013 c/s

Benchmarking: Netscape LDAP SHA SSE2 [SHA-1]... DONE
Raw:    2204K c/s

Benchmarking: Netscape LDAP SSHA SSE2 [salted SHA-1]... DONE
Many salts:    2824K c/s
Only one salt:    2032K c/s

Benchmarking: OpenLDAP SSHA [salted SHA-1]... DONE
Many salts:    1443K c/s
Only one salt:    1356K c/s

Benchmarking: Eggdrop [blowfish]... DONE
Raw:    12299 c/s

Benchmarking: Oracle [oracle]... DONE
Raw:    418759 c/s

Benchmarking: MYSQL [mysql]... DONE
Raw:    992029 c/s

Benchmarking: MySQL 4.1 double-SHA-1 SSE2 [mysql-sha1 SSE2]... DONE
Raw:    1144K c/s

Benchmarking: Lotus5 [Lotus v5 Proprietary]... DONE
Raw:    130809 c/s

Benchmarking: More Secure Internet Password [RSA MD defined by BSAFE 1.x - Lotus v6]... DONE
Many salts:    86117 c/s
Only one salt:    51079 c/s

Benchmarking: LM C/R DES [netlm]... DONE
Many salts:    244081 c/s
Only one salt:    237663 c/s

Benchmarking: NTLMv1 C/R MD4 DES [netntlm]... DONE
Many salts:    335436 c/s
Only one salt:    320273 c/s

Benchmarking: LMv2 C/R MD4 HMAC-MD5 [netlmv2]... DONE
Many salts:    247772 c/s
Only one salt:    241829 c/s

Benchmarking: HalfLM C/R DES [nethalflm]... DONE
Many salts:    603322 c/s
Only one salt:    601247 c/s

Benchmarking: MS-SQL SSE2 [ms-sql SSE2]... DONE
Many salts:    3050K c/s
Only one salt:    2115K c/s

Benchmarking: MS-SQL05 SSE2 [ms-sql05 SSE2]... DONE
Many salts:    3045K c/s
Only one salt:    2036K c/s

Benchmarking: EPiServer SID Hashes [SHA-1]... DONE
Many salts:    1548K c/s
Only one salt:    1472K c/s

Benchmarking: PHPS MD5 [MD5(MD5($pass).$salt)]... DONE
Many salts:    2253K c/s
Only one salt:    1120K c/s

Benchmarking: MYSQL_fast [mysql-fast]... DONE
Raw:    10375K c/s

Benchmarking: PIX MD5 SSE2 [pix-md5 SSE2]... DONE
Raw:    4524K c/s

Benchmarking: SAP CODVN G (PASSCODE) [sapg]... DONE
Many salts:    487255 c/s
Only one salt:    459095 c/s

Benchmarking: SAP BCODE [sapb]... DONE
Many salts:    478364 c/s
Only one salt:    439469 c/s

Benchmarking: Netscreen MD5 [NS MD5]... DONE
Raw:    1639K c/s

Benchmarking: HTTP Digest access authentication [HDAA-MD5]... DONE
Many salts:    636657 c/s
Only one salt:    648469 c/s




Anonymous said...

Thank You. Works fine.

Anonymous said...

thanks for taking the time ..
cheers mate