Hi, I download and complied the unstable-magum jumbo-8 and the openwall sample agile keychains file.
I am just scratching the surface with all this stuff, Please forgive any BS i type out, just looking for some pointers.
I don't want to get balls deep in all this as i said, I just want to try and recover his master password that's all.
He has a fair idea what it could have be, so i can build a wordlist on his ideas.
Benchmarking the agilekeychain format, is opencl possible? will need to read more....
./john -test -fo=agilekeychain
Benchmarking: 1Password Agile Keychain PBKDF2-HMAC-SHA-1 AES [32/32]... DONE
Raw: 1062 c/s real, 1062 c/s virtual
Extracting hash from openwall sample keychain. I saved this out to file named openwall-sample.txt
root@bt:~/tmp/jtr/run# ./agilekc2john.py openwall.agilekeychain
openwall.agilekeychain:$agilekeychain$2*1000*8*7146eaa1cca395e5*1040*e7eb81496717d35f12b83024bb055dec00ea82843886cbb8d0d77302a85d89b1d2c0b5b8275dca44c168cba310344be6eea3a79d559d0846a9501f4a012d32b655047673ef66215fc2eb4e944a9856130ee7cd44523017bbbe2957e6a81d1fd128434e7b83b49b8a014a3e413a1d76b109746468070f03f19d361a21c712ef88e05b04f8359f6dd96c1c4487ea2c9df22ea9029e9bc8406d37850a5ead03062283a42218c134d05ba40cddfe46799c931291ec238ee4c11dc71d2.........
//SNIP//
I do not know the sample password, there is no README inside openwall sample zip file. *sigh*
root@bt:~/tmp/jtr/run# ./john --format=agilekeychain --wordlist=/media/disk/Backtrack/pass/uniq.txt openwall-sample.txt
Loaded 1 password hash (1Password Agile Keychain PBKDF2-HMAC-SHA-1 AES [32/32])
guesses: 0 time: 0:00:00:04 0.00% c/s: 1049 trying: !0906!
guesses: 0 time: 0:00:00:06 0.00% c/s: 1053 trying: !612338
guesses: 0 time: 0:00:00:07 0.00% c/s: 1054 trying: !@#$%^&*adg
guesses: 0 time: 0:00:00:08 0.00% c/s: 1055 trying: !@#$%^&irish
guesses: 0 time: 0:00:00:09 0.00% c/s: 1055 trying: !@#$%^spring
guesses: 0 time: 0:00:00:10 0.00% c/s: 1054 trying: !@#abc&*()
Session aborted
Done, So i can now make attempts, aleast.
But.. yep the dreaded BUT..... When i try to extract the hash from my friends keychain i get an error i don't understand.
root@bt:~/tmp/jtr/run# ./agilekc2john.py jetstream.agilekeychain
error while opening the keychain, Incorrect padding
The openwall sample uses 1000 iterations but my keychain uses 91743 iterations and I believe these are random.
Sorry if its not he place to discuss jtr software, just tell me and i'll feck off ;-)
I am just scratching the surface with all this stuff, Please forgive any BS i type out, just looking for some pointers.
I don't want to get balls deep in all this as i said, I just want to try and recover his master password that's all.
He has a fair idea what it could have be, so i can build a wordlist on his ideas.
Benchmarking the agilekeychain format, is opencl possible? will need to read more....
./john -test -fo=agilekeychain
Benchmarking: 1Password Agile Keychain PBKDF2-HMAC-SHA-1 AES [32/32]... DONE
Raw: 1062 c/s real, 1062 c/s virtual
Extracting hash from openwall sample keychain. I saved this out to file named openwall-sample.txt
root@bt:~/tmp/jtr/run# ./agilekc2john.py openwall.agilekeychain
openwall.agilekeychain:$agilekeychain$2*1000*8*7146eaa1cca395e5*1040*e7eb81496717d35f12b83024bb055dec00ea82843886cbb8d0d77302a85d89b1d2c0b5b8275dca44c168cba310344be6eea3a79d559d0846a9501f4a012d32b655047673ef66215fc2eb4e944a9856130ee7cd44523017bbbe2957e6a81d1fd128434e7b83b49b8a014a3e413a1d76b109746468070f03f19d361a21c712ef88e05b04f8359f6dd96c1c4487ea2c9df22ea9029e9bc8406d37850a5ead03062283a42218c134d05ba40cddfe46799c931291ec238ee4c11dc71d2.........
//SNIP//
I do not know the sample password, there is no README inside openwall sample zip file. *sigh*
root@bt:~/tmp/jtr/run# ./john --format=agilekeychain --wordlist=/media/disk/Backtrack/pass/uniq.txt openwall-sample.txt
Loaded 1 password hash (1Password Agile Keychain PBKDF2-HMAC-SHA-1 AES [32/32])
guesses: 0 time: 0:00:00:04 0.00% c/s: 1049 trying: !0906!
guesses: 0 time: 0:00:00:06 0.00% c/s: 1053 trying: !612338
guesses: 0 time: 0:00:00:07 0.00% c/s: 1054 trying: !@#$%^&*adg
guesses: 0 time: 0:00:00:08 0.00% c/s: 1055 trying: !@#$%^&irish
guesses: 0 time: 0:00:00:09 0.00% c/s: 1055 trying: !@#$%^spring
guesses: 0 time: 0:00:00:10 0.00% c/s: 1054 trying: !@#abc&*()
Session aborted
Done, So i can now make attempts, aleast.
But.. yep the dreaded BUT..... When i try to extract the hash from my friends keychain i get an error i don't understand.
root@bt:~/tmp/jtr/run# ./agilekc2john.py jetstream.agilekeychain
error while opening the keychain, Incorrect padding
The openwall sample uses 1000 iterations but my keychain uses 91743 iterations and I believe these are random.
Sorry if its not he place to discuss jtr software, just tell me and i'll feck off ;-)