Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <CAJ9ii1HSNyV2Yqw3W7GpbyjSuOcaMVpafYqez06JqoN9AFdhJw@mail.gmail.com>
Date: Wed, 21 Nov 2012 12:01:10 -0500
From: Matt Weir <cweir@...edu>
To: john-users@...ts.openwall.com
Subject: Re: How does incremental mode works?

> Do you have any reference or example of these policy filter or equivalent
> solutions being used to generate such kind of specific candidate passwords
> for jTr running with incremental mode?

So in the official EXAMPLES readme for JTR, (found in the doc
directory of your install or online at
http://www.openwall.com/john/doc/EXAMPLES.shtml), give an example on
how to apply policy rules to incremental mode.

-Begin Quote--
You can use some pre-defined or custom word filters when generating
the charset file to have John consider some simpler passwords only:
	john --make-charset=my_alpha.chr --external=filter_alpha mypasswd
-End Quote---

Now that is for trying only simple passwords, but you could use an
external mode to only build charsets based on more complicated
passwords as well, (aka must be at least 8 chars, contain an uppercase
character + digit). I want to stress that many of the guesses
generated by incremental mode using your charset won't meet the
password creation requirement. For that you would need to specify your
external filter again when cracking passwords so that you don't waste
time hashing guesses that have no chance of cracking a password hash
due to policy requirements.

I hope this helps.

Matt

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.