[prev in list] [next in list] [prev in thread] [next in thread] 

List:       john-users
Subject:    Re: [john-users] How does JTR know what kind of hash to try to crack?
From:       Solar Designer <solar () openwall ! com>
Date:       2013-01-05 7:00:53
Message-ID: 20130105070053.GD14030 () openwall ! com
[Download RAW message or body]

On Mon, Dec 31, 2012 at 11:00:53PM +0000, John Hall wrote:
> Using JTR with jumbo patch to try to crack forgotten password to the Password Safe \
> program http://passwordsafe.sourceforge.net/ 
> I believe the Password Safe program uses SHA-256 hash.
> 
> Question: How does john know to try SHA-256 hash codes instead of, say, MD5 hash \
> codes or some other hash?

When you run the pwsafe2john program, it formats its output such that
JtR will know the data came from a Password Safe database.  JtR then
runs the proper code, which includes Password Safe specific uses of
SHA-256 (lots of iterations of it per each candidate password tested)
and more.

Alexander


[prev in list] [next in list] [prev in thread] [next in thread]