Day 68: Crack File, Key and Keychain Passwords with John
John the Ripper is a free password cracking software tool and is the go-to tool for cracking hashes, most people are used to doing this via cli, but what about password protected files, keys and keychains?
The key to using John to crack file passwords such as zip files, rar files, keychain files, ssh keys and much more is to use the community-enhanced versions 2john scripts.
rar2john utility for RAR 3.x files, rar2john processes input RAR files into a format suitable for use with JtR.
rar2john [rar files]
john [output file]
gpg2john mykey.asc > hash
john --wordlist=pass.txt hash
hccap2john processes input hccap files into a format suitable for use with JtR
hccap2john ./my.hccap > crackme
john --wordlist=rockyou-10.txt --format=wpapsk crackme
Keepass2john processes input KeePass 1.x and 2.x * database files into a format suitable for use with JtR
keepass2john CrackThis.kdb > CrackThis.hash
keepchain2john processes input Mac OS X keychain files into a format suitable for use with JtR.
keychain2john [keychain files]
Cracking GNOME Keyring files
keyring2john Default.keyring > hash
keystore2john [keystore file]
kwallet2john [kwallet file]
zip2john processes input ZIP files into a format suitable for use with JtR.
zip2john encrypted.zip > encrypted.hash
john --show encrypted.hash