Password Cracker Upgrades

Monday, July 9, 2012 @ 12:07 PM gHale


John the Ripper password cracker has significant format support enhancements as the open source tool is now able to crack password-protected office documents (Office 2007/2010 and OpenDocument) and Firefox, Thunderbird and SeaMonkey master passwords, as well as WPA-PSK keys and Mac OS X keychains.

Version 1.7.9-jumbo-6 of John the Ripper can also request to use GPUs via CUDA and OpenCL. The programming shows more than 40,000 lines of code added in the six months since the previous release.

RELATED STORIES
Ransomware Steps it up a Notch
New Scareware Threatens Prosecution
Ransomware Hits U.S., Canada
New Ransomware Gets Tough

Developer Solar Designer said in developing GPU support, the focus has been on modern functions which can be slow to calculate, such as WPA-PSK and Unix password hashes. For some functions, such as Ubuntu’s standard hash function (sha512crypt) and the time-consuming bcrypt, there were, according to the developers, no crackers with GPU support until now, “because others were unhappy about releasing a tool with ‘non-impressive’ speed numbers, even if this is desirable in practice.”

In the case of sha512crypt, this means the GPU on a GeForce GTX 570 graphics card can generate around 11,000 hashes per second – still more than five times faster than on a computer with eight CPU cores.

By comparison, for SHA1 hashes, with GPU support this figure would normally be in the millions. For bcrypt, a graphics card just beats an eight-core system by a hair’s breadth – in both cases the maximum figure is around 5,000 hashes.

The inability of GPUs to realize speed gains with bcrypt is due to the algorithm’s design, which is very memory intensive. Solar Designer said the developers primarily worried about finding out just how slow the bcrypt implementation would be.



Leave a Reply

You must be logged in to post a comment.