Comments on Defence in Depth: Cracking Mac OS X Passwords

what does the c/s mean? Does it mean cracks per se...

2011-12-22T21:59:55.458-08:00

what does the c/s mean?
Does it mean cracks per second?
If it does mean that mine says: ‘guesses: 0 time: 1:21:22:54 (3) c/s: 1968K trying: 1euy35h7′
Is 1968K too slow?

Hi Patrick, would be nice to have this article upd...

2011-08-16T00:51:35.220-07:00

Hi Patrick, would be nice to have this article updated for 10.7 Lion because it doesn't work there …

Oh yea, make myself look super foolish. I get to t...

2011-07-15T17:26:57.778-07:00

Oh yea, make myself look super foolish.
I get to the point where I run:
./john hash.txt

(not the command dscl localhost -read /Search/Users/ | grep GeneratedUID | cut -c15- as listed above)

and that is when I get the erro that I posted.

Duhhhh - blonde moment I guess.

that last post should show: dyld: lazy symbol bin...

2011-07-15T17:11:57.462-07:00

that last post should show:

dyld: lazy symbol binding failed: Symbol not found: ___bzero
Referenced from: /Users/M/Downloads/john/run/./john
Expected in: /usr/lib/libSystem.B.dylib

All instructions work up to the point of: dscl loc...

2011-07-15T17:10:49.887-07:00

All instructions work up to the point of:
dscl localhost -read /Search/Users/ | grep GeneratedUID | cut -c15-
At which poiint I get:

yld: lazy symbol binding failed: Symbol not found: ___bzero
Referenced from: /Users/M/Downloads/john/run/./john
Expected in: /usr/lib/libSystem.B.dylib

Would anyone be willing to help me with this?

Works perfect and shocked some clients with not so...

2011-07-05T05:19:52.241-07:00

Works perfect and shocked some clients with not so strong passwords… ;) Now they use much more secure passwords because they know it better.

dscl doesn't work in single user mode on 10.6....

2011-02-18T13:52:17.318-08:00

dscl doesn't work in single user mode on 10.6. OSX returns an error about needing to enable it, but the command that OSX suggests doesn't work.

oh my god, you have been my saviour. I had an old ...

2011-02-13T16:15:56.696-08:00

oh my god, you have been my saviour. I had an old macbookpro which I needed to resurrect and this information helped me to crack the forgotten password. Once I ran "John The Ripper", it took 4 seconds to crack.

BTW, I used a firewire cable to mount (Hold T when booting up) the old macbook to get to the hash files and extract the sha1 hash. Thanks muchly

tried cracking a 10.6.4 hash with the Jumbo patche...

2011-01-31T11:12:19.158-08:00

tried cracking a 10.6.4 hash with the Jumbo patched JTR. let my macbook go at it for 30 hours with no success. is something wrong or am i just trying to crack a ridiculous password?

sorry, thats really: dscl . -read /Users/(usernam...

2011-01-27T15:52:12.847-08:00

sorry, thats really:

dscl . -read /Users/(username) GeneratedUID | cut -c15-

For OS 10.6.3, the first command should be changed...

2011-01-27T15:50:51.659-08:00

For OS 10.6.3, the first command should be changed to:

dscl . -read /Users/ GeneratedUID | cut -c15-

your password must be "bob1900" without ...

2010-10-07T12:17:16.714-07:00

your password must be "bob1900" without the quotes "" right ?!!

you really want to use the --single MOD when first crack or you are not sure what MOD to use, like so:
# ./john --single sha1.txt

ok i found the solution (my comment is the previou...

2010-10-06T02:10:54.341-07:00

ok i found the solution (my comment is the previous one (SL 10.6.4))

the "jumbo patch" does the trick !

hello, i tried this guide on a mbp running SL 10....

2010-10-06T01:42:26.840-07:00

hello,

i tried this guide on a mbp running SL 10.6.5 as root, but i keep getting the error "No password hashes loaded" in the final step.

i followed all steps and i made sure there is no syntax error within the previous commands, but jtr seems to be unable to extract the password from the hash in the end.

anyone have an idea maybe ?!

Would be glad if someone could help me. I have JTR...

2010-09-23T13:31:07.302-07:00

Would be glad if someone could help me. I have JTR, however is it possible to provide a COPY/PASTE code for entry in the Mac Terminal to CRACK 'login.keychain'?

I have searched the entire web which offers JTR posts in complicated terms. I think this would be helpful to ALL who have this need. This tutorial is great. Would be very nice if the same step-step could be out here for the keychain file.

Thanks in advance!

I have my password hash and I have the latest vers...

2010-09-06T21:54:33.429-07:00

I have my password hash and I have the latest version of john the ripper jumbo patch for mac osx. how do i compile the run file found in the package, and do I even need to do that?

@andrew.stinton Try typing the command in manuall...

2010-06-03T02:16:26.630-07:00

@andrew.stinton

Try typing the command in manually instead of copy/paste. Let me know how you go :)

Mackaber, I am sending the command from root. I be...

2010-06-02T19:32:01.616-07:00

Mackaber,
I am sending the command from root. I believe that there is an issue with the snytax of the first command when sent to the 10.6.3 kernel
demonstration here:
http://docs.google.com/View?id=dgpcw55k_42hp993fgv

you can enter to verbose mode before the computer ...

2010-06-02T11:40:22.814-07:00

you can enter to verbose mode before the computer stars by pressing 'cmd + s' then you have root access immediately to everything therefore you can follow this and crack any mac

I believe the syntax is incorrect for step 1 when ...

2010-05-31T15:27:51.962-07:00

I believe the syntax is incorrect for step 1 when used in 10.6

Greg, Thanks for your comments! Yes, unfortunate...

2010-03-31T02:01:23.331-07:00

Greg,

Thanks for your comments!

Yes, unfortunately (for us) this is how Unix and Unix-based variants deal with passwords. A shadowed password means that only those with the relevant privileges (typically root) can view them.

Password cracking in this instance would be used when you have already exploited/gained access to the system.

Tried it with sudo just for fun, but need the pass...

2010-03-30T09:46:29.866-07:00

Tried it with sudo just for fun, but need the password that I'm trying to find.

Irony ^_^

The only problem I get with this so far is the sec...

2010-03-30T09:45:07.473-07:00

The only problem I get with this so far is the second command with the cat gets me a Permission denied.

Could've been awesome to know.