nerdexam
EC-Council

312-50V9 · Question #263

Eve stole a file named secret.txt, transferred it to her computer and she just entered these commands: [eve@localhost ~]$ john secret.txt Loaded 2 password hashes with no different salts (LM [DES 128/

The correct answer is D. She is using John the Ripper to crack the passwords in the secret.txt file.. Eve is using John the Ripper, a password cracking tool, to attempt to recover plaintext passwords from hashes stored in secret.txt.

System Hacking

Question

Eve stole a file named secret.txt, transferred it to her computer and she just entered these commands:

[eve@localhost ~]$ john secret.txt Loaded 2 password hashes with no different salts (LM [DES 128/128 SSE2- 16]) Press 'q' or Ctrl-C to abort. almost any other key for status 0g 0:00:00:03 3/3 0g/s 86168p/s 86168c/s 172336C/s MERO..SAMPLUI 0g 0:00:00:04 3/3 0g/s 3296Kp/s 3296Kc/s 6592KC/s GOS..KARIS4 0g 0:00:00:07 3/3 0g/s 8154Kp/s 8154Kc/s 16309KC/s NY180K..NY1837 0g 0:00:00:10 3/3 0g/s 7958Kp/s 7958Kc/s 1591KC/s SHAGRN..SHENY9 What is she trying to achieve?

Options

  • AShe is encrypting the file.
  • BShe is using John the Ripper to view the contents of the file.
  • CShe is using ftp to transfer the file to another hacker named John.
  • DShe is using John the Ripper to crack the passwords in the secret.txt file.

How the community answered

(27 responses)
  • A
    4% (1)
  • B
    7% (2)
  • D
    89% (24)

Why each option

Eve is using John the Ripper, a password cracking tool, to attempt to recover plaintext passwords from hashes stored in secret.txt.

AShe is encrypting the file.

Encryption would require tools like gpg or openssl and would not produce hash-type detection output or cracking speed statistics.

BShe is using John the Ripper to view the contents of the file.

John the Ripper does not read or display file contents - it parses password hashes and attempts to reverse them into plaintext credentials.

CShe is using ftp to transfer the file to another hacker named John.

FTP is a network file-transfer protocol with its own dedicated client tools; the 'john' binary is a local password cracker and produces no FTP-related output.

DShe is using John the Ripper to crack the passwords in the secret.txt file.Correct

John the Ripper (invoked via the 'john' command) is a well-known offline password cracking utility. The output showing the hash type (LM/DES), crack speeds measured in passwords-per-second (p/s), and incremental status updates is the standard runtime output of John the Ripper actively brute-forcing or dictionary-attacking password hashes extracted into secret.txt.

Concept tested: Offline password cracking with John the Ripper

Source: https://www.openwall.com/john/

Topics

#John the Ripper#password cracking#LM hash#offline attack

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice