Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

psk-crack(1) [debian man page]

PSK-CRACK(1)						      General Commands Manual						      PSK-CRACK(1)

NAME

       psk-crack - Crack IKE Aggressive Mode Pre-Shared Keys

SYNOPSIS

       psk-crack [options] <psk-parameters-file>

       <psk-parameters-file>  is a file containing the parameters for the pre-shared key cracking process in the format generated by ike-scan with
       the --pskcrack (-P) option.  This file can contain one or more entries.	For multiple entries, each one must be on a separate line.

       The program can crack either MD5 or SHA1-based hashes.  The type of hash is automatically determined from the length of the hash (16  bytes
       for  MD5 or 20 bytes for SHA1).	Each entry in the <psk-parameters-file> is handled separately, so it is possible to crack a mixture of MD5
       and SHA1 hashes.

       psk-crack can also crack the proprietary hash format used by Nortel Contivity / VPN Router systems.  When cracking  Nortel  format  hashes,
       you  need to specify the username of the hash that you are cracking with the --norteluser (-u) option.  When cracking Nortel format hashes,
       you can only crack one hash at a time.

       By default, psk-crack will perform dictionary cracking using the default dictionary.  The dictionary can be changed with  the  --dictionary
       (-d) option, or brute-force cracking can be selected with the --bruteforce (-B) option.

DESCRIPTION

       psk-crack  attempts  to	crack  IKE  Aggressive	Mode pre-shared keys that have previously been gathered using ike-scan with the --pskcrack
       option.

       psk-crack can operate in two different modes:

       1)     Dictionary cracking mode: this is the default mode in which psk-crack tries each candidate word from the	dictionary  file  in  turn
	      until it finds a match, or all the words in the dictionary have been tried.

       2)     Brute-force  cracking  mode:  in	this  mode,  psk-crack	tries all possible combinations of a specified character set up to a given
	      length.

OPTIONS

       --help or -h
	      Display this usage message and exit.

       --version or -V
	      Display program version and exit.

       --verbose or -v
	      Display verbose progress messages.

       --dictionary=<f> or -d <f>
	      Set dictionary file to <f>.  The default is /usr/local/share/ike-scan/psk-crack-dictionary.

       --norteluser=<u> or -u <u>
	      Specify the username for Nortel Contivity cracking.  This option is required when cracking pre-shared keys on Nortel Contivity / VPN
	      Router  systems.	 These	systems  use  a  proprietary method to calculate the hash that includes the username.  This option is only
	      needed when cracking Nortel format hashes, and should not be used for standard format hashes.

       --bruteforce=<n> or -B <n>
	      Select bruteforce cracking up to <n> characters.

       --charset=<s> or -c <s>
	      Set bruteforce character set to <s> Default is "0123456789abcdefghijklmnopqrstuvwxyz"

AUTHOR

       Roy Hills <Roy.Hills@nta-monitor.com>

								 February 14, 2005						      PSK-CRACK(1)

Check Out this Related Man Page

CRACK(8)						      System Manager's Manual							  CRACK(8)

NAME

       Crack, Reporter - programs to break password files

SYNOPSIS

       Crack [options] [-fmt format] [file ...]
       Crack-Reporter [-quiet] [-html]

DESCRIPTION

       This manual page documents briefly the Crack, and Crack-Reporter commands.  This manual page was written for the Debian GNU/Linux distribu-
       tion because the original program does not have a manual page.  Instead, there is  some	documentation  available  at  /usr/share/doc/crack
       which you are encouraged to read

       Crack  is  not  a  program  designed to break the password of every user in the file.  Rather, it is designed to find weak passwords in the
       file, by attacking those sorts of bad passwords which are most likely to be used, in the order in which they would  most  easily  be  found
       (ie: are most likely to be used by a moronic user).

       Crack is not designed to break user passwords; it is designed to break password files.  This is a subtle but important distinction.

       Crack-Reporter  will  show  what  passwords have been cracked, as well as view errors that have been detected in the source password files,
       etc.  Guesses are listed chronologically, so users who wish to see incremental changes in the output as	Crack  continues  to  run  over  a
       course of days or weeks, are encouraged to wrap invocations of Crack-Reporter in a script with diff.

OPTIONS

       A summary of options are included below.  For Crack:

       -makedict
	      Creates and compresses the dictionaries Crack will use

       -makeonly
	      Compiles the binaries for Crack (not necessary for Debian GNU/Linux since they are already provided)

       -debug Lets you see what the Crack script is doing.

       -recover
	      Used when restarting an abnormally-terminated run; suppresses rebuild of the gecos-derived dictionaries.

       -fgnd  Runs the password cracker in the foreground, with stdin, stdout and stderr attached to the usual places.

       -fmt format
	      Specifies the input file format.

       -from N
	      Starts password cracking from rule number "N".

       -keep  Prevents deletion of the temporary file used to store the password cracker's input.

       -mail  E-Mail a warning message to anyone whose password is cracked.  See the script nastygram.

       -network
	      Runs the password cracker in network mode.

       -nice N
	      Runs the password cracker at a reduced priority, so that other jobs can take priority over the CPU.

       -kill filename

       -remote
	      Internal options used to support networking.

	      For  Crack-Reporter  -html Produces output in a fairly basic HTML-readable format.  -quiet Suppresses the reporting of errors in the
	      password file (corrupt entries, etc)

EXAMPLES

       To run Crack

	  # Crack -nice 10 /etc/passwd

       If a Crack session is killed accidentally, it can be restarted with moderate efficiency by doing:

	   mv run/Dhostname.N run/tempfilename
	   Crack -recover -fmt spf run/tempfilename

       However if all you wish to do is start cracking passwords from some specific rule number, or to restart a run whilst skipping  over  a  few
       rulesets, try:

	   Crack [-recover] -from N filename ...

       ...where N is the number of the rule to start working from.

FILES

       /usr/share/Crack Location of the Crack program and scripts.  /var/lib/Crack/ Location for the temporary files used by Crack.

SEE ALSO

       You  will  find	more  documentation about Crack in the text files available in /usr/share/doc/crack-common Documentation includes the pro-
       gram's Manual (in HTML and Text files), the User's Frequently Asked Questions (FAQ), examples, articles and even some humour.

AUTHOR

       This manual page was written by Javier Fernandez-Sanguino <jfs@debian.org>, for the Debian GNU/Linux system (but may be used by others).

       Crack and Crack-Reporter (originally called Reporter) were written by Alec Muffett  <Alec.Muffett@UK.Sun.COM>

																	  CRACK(8)
Man Page