HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 33 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow John the ripper crack doesn't seem to work from htpasswd file...
EH-Net
May 18, 2013, 09:02:45 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: John the ripper crack doesn't seem to work from htpasswd file...  (Read 2894 times)
0 Members and 1 Guest are viewing this topic.
wlandymore
Newbie
*
Offline Offline

Posts: 34


View Profile
« on: May 19, 2012, 09:25:12 PM »
I'm testing a box that someone else has setup and I managed to get into the FTP server on it and then download the .htpasswd file. When opened it had a user:hash in it and then I put that in a txt file and then ran John The Ripper on it.

It took about 23 minutes and it came up with the password. However, if I try to use that account on ftp or even RDP it won't work. Is there a chance that somehow it got it wrong with JTR? Also, this is a Windows box running this...
Logged
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1056


aka dynamik


View Profile WWW
« Reply #1 on: May 19, 2012, 09:51:14 PM »
That's used for password-protecting web access. Can you authenticate to the password protected area(s) of the website? There's always a chance credentials could be reused with other services, but they're not going to use that file as a credential store.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
wlandymore
Newbie
*
Offline Offline

Posts: 34


View Profile
« Reply #2 on: May 20, 2012, 02:25:12 AM »
yeah, I see what you're saying but I tried connecting to it on 80 and 443 and nmap didn't come back with a web service running...Just FTP and RDP
Logged
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #3 on: May 20, 2012, 03:10:40 AM »
What options did you give NMAP when you ran it?

Could always be that file is just a red herring.
Logged
OSWP, Sec+
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1056


aka dynamik


View Profile WWW
« Reply #4 on: May 20, 2012, 08:15:13 AM »
The web server could also be running on a non-standard port.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.061 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.