mcoleson
asked on
John the Ripper: Passwords displayed in UPPER case
I am using John the Ripper to crack passwords from my Windows Domain. (I'm the admin).
It always displays the passwords in upper case. Is there a setting that will display them in their true (mixed) case?
thanks
Mike
It always displays the passwords in upper case. Is there a setting that will display them in their true (mixed) case?
thanks
Mike
This comes from a flaw in the way some windows system's are setup to store passwords, I belive this is the Unix/Linux compatible type where case doesn't matter. John the ripper cracks these becasue it's easier to guess than the mixed case passwords. I would suggest running pwdump on your domain to obtain the true MD5 hashes of the passwords.
ASKER
kamichie,
I did run pwdump to create the file and then fed it into John the Ripper.
Since people rarely use upper case in their passwords, I knew that John must be displaying them in upper.
I did run pwdump to create the file and then fed it into John the Ripper.
Since people rarely use upper case in their passwords, I knew that John must be displaying them in upper.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Makes sense. Thanks