Crack linux passwords using John the Ripper

John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), Windows, DOS, BeOS, and OpenVMS (the latter requires a contributed patch). Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos/AFS and Windows LM hashes, as well as DES-based tripcodes, plus many more hashes and ciphers in “community enhanced” -jumbo versions and/or with other contributed patches.

John the Ripper is available on Kali Linux.

  1. Go to John the Ripper directory and create a copy of a passwd file and a copy of a shadow file
    sudo ./unshadow /etc/passwd /etc/shadow > /home/ddos/Desktop/crackpassword
  2. Use John to crack
    john /home/ddos/Desktop/crackpassword –show
    or
    john/home/ddos/Desktop/crackpassword –wordlist=/path/to/passwords.lst