This is an old revision of the document!
JtR-jumbo supports way many more hashes (or non-hashes) than that are listed on this page.
Supported in JtR 1.7.9-jumbo-8 and above.
Sample 1Password “Agile Keychain” files
Sample 7-Zip files
New disk images created with a recent version of OSX, including .sparseimage and .sparsebundle which are also used by Apple Time Machine and FileVault (up to Lion)
Sample Bitcoin Core wallet files
Sample DHCP authentication packet captures
Version 1:
Version 2:
Sample EIGRP MD5 authentication packet captures
Sample GELI encrypted disk images
Supported in JtR 1.7.9-jumbo-8 and above.
Sample GnuPGP file(s)
Sample HSRP MD5 authentication packet captures
Supported in JtR 1.7.9-jumbo-8 and above. Use Ettercap to get JtR compatible hashes from .pcap files.
Sample iSCSI CHAP pcap file(s)
Sample iTunes Backup manifest files.
Sample Jetico BestCrypt Containers
Supported in JtR 1.7.9-jumbo-6 and above.
Sample KeePass files
Supported in JtR 1.7.7-jumbo-5 and above.
Supported in bleeding-jumbo (will be JtR 1.8.0-jumbo1) and above.
Supported in bleeding-jumbo (will be JtR 1.8.0-jumbo1) and above.
Sample LastPass files
Supported by JtR-jumbo (bleeding-jumbo branch).
Sample LUKS files
Supported in JtR 1.7.9-jumbo-8 and above.
Supported in JtR 1.7.9-jumbo-6 and above.
Sample profiles (contributed by Rich and Dhiru)
See doc/README.mozilla or latest README.mozilla for information about cracking Mozilla Master passwords.
Supported in JtR 1.7.9-jumbo-6 and above.
Sample keychain files (contributed by Erik)
Sample encrypted disk images.
Sample files (contributed by Rich)
NOTE: Office 2003, 2007, 2010 files are supported by JtR 1.7.9-jumbo-7 and above.
NOTE: Office 2013 will be supported by JtR 1.7.9-jumbo-8 and above.
The README files inside have further information and details about these files
Supported in JtR 1.7.9-jumbo-8 and above. Use Ettercap to get JtR compatible hashes from .pcap files.
Sample Oracle O5LOGON pcap file(s)
Sample Padlock encrypted databases
Supported in JtR 1.7.9-jumbo-6 and above.
Sample Password Safe files
Supported in JtR 1.7.7-jumbo-6 and above.
Sample PDF files (mostly generated using Adobe Acrobat X Pro):
Supported in JtR 1.7.9-jumbo-8 and above. Use Ettercap to get JtR compatible hashes from .pcap files.
Sample PPTP MS-CHAPv2 pcap file(s)
Supported in JtR 1.7.9-jumbo-8 and above.
Sample PKCS #12 files
Supported in bleeding jumbo.
'p' mode =⇒ rar a -ma5 rar5-p0-password.rar -p secret.txt
'hp' mode =⇒ rar a -ma5 rar5-hp0-password.rar -hp secret.txt
Supported in JtR 1.7.7-jumbo-6 and above.
Download link for RAR utility: http://www.rarlab.com/download.htm
echo "test" > test.txt rar a testhp0.rar -hp password test.txt rar a testp0.rar -p password test.txt rar a testplain.rar test.txt
hp0.rar
file is created using rar -hp
p0.rar
file is created using rar -p
Supported in JtR 1.7.7-jumbo-6 and above.
Sample SSH private keys (created using ssh-keygen
and OpenSSL):
dsa_test_enc.key
is a PKCS#8 format key created using OpenSSL. The rest of the key files are generated using ssh-keygen
.
Supported by https://github.com/magnumripper/JohnTheRipper/.
Sample new format SSH private keys (created using ssh-keygen
):
Supported in JtR 1.7.9-jumbo-8 and above.
Supported in JtR 1.7.9-jumbo-8 and above.
Sample TrueCrypt file(s)
Supported in JtR 1.7.9-jumbo-6 and above.
Sample VNC pcap files (contributed by Rich and Dhiru)
Sample VRRP MD5 authentication packet captures
More samples can be found at https://github.com/kholia/my-pcaps.
There are also good samples in the test directory of aircrack-ng.
Note that the “bad auths” can be cracked even though they were not correct for that AP. So we crack what the client thought was the password.
AES-encrypted WinZip archives are supported in JtR 1.7.8-jumbo-2 and above. Note: as currently implemented, false positives may occur (in other words, non-working passwords may be found), typically if the actual passwords are complicated.
Sample ZIP files (created using WinZip and WinRAR):