312-50V10 · Question #238
Eve stole a file named secret.txt, transferred it to her computer and she just entered these commands: What is she trying to achieve?
The correct answer is B. She is using John the Ripper to crack the passwords in the secret.txt file. Eve is using John the Ripper, a well-known password cracking tool, against password hashes stored in the secret.txt file to recover plaintext credentials.
Question
Eve stole a file named secret.txt, transferred it to her computer and she just entered these commands:
What is she trying to achieve?
Exhibit
Options
- AShe is using ftp to transfer the file to another hacker named John.
- BShe is using John the Ripper to crack the passwords in the secret.txt file
- CShe is encrypting the file.
- DShe is using John the Ripper to view the contents of the file.
How the community answered
(26 responses)- A4% (1)
- B88% (23)
- C8% (2)
Why each option
Eve is using John the Ripper, a well-known password cracking tool, against password hashes stored in the secret.txt file to recover plaintext credentials.
FTP is a file transfer protocol and has no role in password cracking; John the Ripper commands do not facilitate transferring files to another party.
John the Ripper is an open-source password cracking utility that takes password hash files as input and attempts to recover plaintext passwords via dictionary, brute-force, and rule-based attacks. The secret.txt file likely contains /etc/shadow-style hashes or similar credential data, and John the Ripper is the standard tool used to crack them offline after exfiltration.
John the Ripper is a password cracking tool, not an encryption utility; encryption tools include GPG, OpenSSL, or AES-based programs.
John the Ripper does not function as a file viewer - it processes hash values to recover passwords, not to display raw file contents.
Concept tested: John the Ripper offline password cracking
Source: https://www.openwall.com/john/
Topics
Community Discussion
No community discussion yet for this question.
