Differences

This shows you the differences between two versions of the page.

Link to this comparison view

john:OpenCL-BitLocker [2017/08/07 11:30]
elenago [References, license and contacts]
john:OpenCL-BitLocker [2017/10/24 05:11] (current)
elenago [Output]
Line 2: Line 2:
  
 BitLocker is a full-disk encryption feature available in recent Windows versions (Vista, 7, 8.1 and 10) Pro and Enterprise.\\ BitLocker is a full-disk encryption feature available in recent Windows versions (Vista, 7, 8.1 and 10) Pro and Enterprise.\\
-We released the OpenCL version of our crack as a plugin for John The Ripper Jumbo version.\\ 
 BitLocker-OpenCL format attacks memory units encrypted with the password authentication mode of BitLocker (see the following picture).\\ BitLocker-OpenCL format attacks memory units encrypted with the password authentication mode of BitLocker (see the following picture).\\
  
 {{:​john:​bitcracker_img1.png?​direct&​400|}} {{:​john:​bitcracker_img1.png?​direct&​400|}}
  
-Our attack has been tested on several ​USB pendrives ​encrypted with BitLocker ​running ​on Windows 7, Window ​8.1 and Windows ​10 (both compatible and non-compatible mode).+Our attack has been tested on several ​memory devices ​encrypted with BitLocker on Windows 7, 8.1 and 10 (both compatible and not compatible mode).\\ 
 +You can find the standalone CUDA implementation here: https://​github.com/​e-ago/​bitcracker\\
  
 ===== How To ===== ===== How To =====
  
 In order to use the BitLocker-OpenCL format, you must produce a well-formatted hash of your encrypted image. In order to use the BitLocker-OpenCL format, you must produce a well-formatted hash of your encrypted image.
 +Samples BitLocker images for testing are available at https://​github.com/​kholia/​libbde/​tree/​bitlocker2john/​samples and here: https://​github.com/​e-ago/​bitcracker/​tree/​master/​Images
  
 ==== Method 1 ==== ==== Method 1 ====
  
-Use the included ​bitlocker2john tool to extract ​hashes ​from the password protected BitLocker encrypted volumes.+Use the //bitlocker2john// tool (john repo) to extract ​the hash from the password protected BitLocker encrypted volumes.
  
 <​code>​ <​code>​
Line 31: Line 32:
 ==== Method 2 ==== ==== Method 2 ====
  
-First, build the "​bitlocker2john"​ (https://​github.com/​kholia/​bitlocker2john) project from source. See https://​github.com/​libyal/​libbde/​wiki/​Building for help.+First, build the "​bitlocker2john"​ (external repo: https://​github.com/​kholia/​bitlocker2john) project from source. See https://​github.com/​libyal/​libbde/​wiki/​Building for help.
 Second, use the built bitlocker2john project to extract hash(es) from the encrypted BitLocker volume. Second, use the built bitlocker2john project to extract hash(es) from the encrypted BitLocker volume.
  
Line 61: Line 62:
 ==== Cracking Process ==== ==== Cracking Process ====
  
-Start John BitLocker-OpenCL formatspecifying the previous hash:+Use the BitLocker-OpenCL format specifying the previous hash:
 <​code>​ <​code>​
 ./john --format=bitlocker-opencl --wordlist=wordlist target_hash ​ ./john --format=bitlocker-opencl --wordlist=wordlist target_hash ​
 </​code>​ </​code>​
  
-Currently, ​BitCracker ​is able to evaluate passwords having length ​ between 8 (minimum password length) and 16 characters (implementation reasons). We will increase the max passwords size in the next release. +Currently, ​this format ​is able to evaluate passwords having length between 8 (minimum password length) and 27 characters (implementation reasons). ​ 
- +We will increase the max passwords size in the next release.
-Samples BitLocker images for testing are available at https://​github.com/​kholia/​libbde/​tree/​bitlocker2john/​samples+
  
 ===== Output ===== ===== Output =====
  
-We tested our final OpenCL solution on a GeForce Titan X, Maxwell architecture (Openwall). ​An output example is:+An output example is:
  
 <​code>​ <​code>​
Line 85: Line 85:
  
 </​code>​ </​code>​
 +
 +This OpenCL implementation has been tested on a GPU GeForce Titan X (Openwall), GPU AMD Radeon HD 7990 Malta and an Intel Core i7 Kaby Lake CPU.
 ===== References, license and contacts ===== ===== References, license and contacts =====
  
Line 91: Line 93:
 Licensed under GPLv2\\ Licensed under GPLv2\\
  
-You can find the standalone CUDA version ​here: https://​github.com/​e-ago/​bitcracker\\+You can find the standalone CUDA implementation ​here: https://​github.com/​e-ago/​bitcracker\\
 This is a research project; for any additional info or to report any bug please contact <elena dot ago at gmail dot com> This is a research project; for any additional info or to report any bug please contact <elena dot ago at gmail dot com>
john/OpenCL-BitLocker.1502130657.txt · Last modified: 2017/08/07 11:30 by elenago
 
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Noncommercial-Share Alike 3.0 Unported
Recent changes RSS feed Donate to DokuWiki Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki Powered by OpenVZ Powered by Openwall GNU/*/Linux Bookmark and Share