search

John the Ripper - Intro

John the Ripper

hashtag
Introduction

John the Ripper is a free and open-source password cracking tool which can crack passwords stored in various formats including hashes and encrypted private keys.

hashtag
Uses

  • Password auditing (assessing strength of passwords used in organizations)

  • Password recovery

  • Penetration testing

hashtag
Hash Cracking Basics

hashtag
John Basic Syntax

john [options] [path to file]

  • john : Invokes the John the Ripper program

  • [path to file] : The file containing the hash you're trying to crack

hashtag
Automatic Cracking

Syntax:

john --wordlist=[path to wordlist] [path to file]

  • --wordlist= : Specifies using wordlist mode, reading from the file that you supply in the following path

  • [path to wordlist] : The path to the wordlist you're using

Example Usage:

Here, the hash type is not specified, so the tool automatically tries to detect the hash and tries to crack it. This is a quick method, however can be unreliable sometimes.

hashtag
Identifying hashes

Hash type can be identified using an online hash identifier tool: https://hashes.com/en/tools/hash_identifierarrow-up-right or by using a Python tool called hash-identifierarrow-up-right.

hashtag
Format-specific Cracking

Syntax:

john --format=[format] --wordlist=[path to wordlist] [path to file]

  • --format= : This is the flag to tell John that you're giving it a hash of a specific format

  • [format] : The format that the hash is in

Example Usage:

hashtag
Listing JTR's Hash Formats

The john the ripper formats can be listed by adding using the command:

You can manually check, or grep for your hash type using something like:

PreviousNetcat - AdvancedNextJohn the Ripper - Commands

Last updated