John The Ripper For Mac



Distributed John is a distributed password cracking using John The Ripper. It consists of a server that handles work to the clients (each on a different machine), which use John. John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes.

The

John The Ripper is a password cracking tool. Compiling it for Mac was working fine until Apple removed the openssl headers. Here are instructions for building John The Ripper on OS 10.11 El Capitan.

  • John the Ripper: Tool for Mac password cracking. John The Ripper is perhaps the best known.
  • John The Ripper, AKA John/JTR is the extreme opposite of intuitive, and unless you are an UberGeek, you've probably missed out few subtleties. Secondly, John The Ripper is a bit like a Muscle Car delivered from the factory with the 'Eco' settings enabled by default.

I’m assuming you know how to run some basic shell commands in Terminal. If you don’t know what that is, and don’t know how to get a shell, then this won’t make much sense to you!

Before you begin, ideally, you should get all the tools you need to compile things on your mac. You might need to get XCode (from the App Store) and install the command-line tools. If you’re not sure whether the tools are installed or not, get a terminal running and execute the command ‘cc’:

If you get a clang error message (this is good!) you have the tools, you have the talent; it’s Miller time!

John

If you don’t have the tools installed, you’ll get a pop-up window that asks if you want to install the command-line tools.

For this walkthrough we’ll download everything in to /tmp so my instructions can make use of absolute paths when making and patching JtR. If you downloaded elsewhere, just make a note of the directory.

John The Ripper For Mac

This has been tested and is working on a freshly installed Mac OS 10.11.3 with only the X-Code and the command line tools installed.

John

Ok, let’s go!

John The Ripper For Mac

First, identify your version of openssl to make sure we get the same header source code as the installed version. It should be the same on all the El Capitans, but just to be sure, open a terminal and run the following and make note (mine is 0.9.8zg):

Download the openssl source from http://openssl.org/ – this will provide you with the missing header files – if you aren’t using 0.9.8zg, go to the http://openssl.org/ site and find the correct source download for your version!

Get and unpack the John The Ripper (JtR) source from openwall.com:

The makefile that was included with john-1.8.0-jumbo-1 is missing some bits, read the patch if you want to know more:

Tell JtR configuration where to find the OpenSSL you downloaded.

If you don’t get any errors, you’re (probably) done!

The files for your JohnTheRipper are in /tmp/john-1.8.0-jumbo-1 and the executable files are in the subdirectory labelled ‘run’. Test it out by doing:

If you get a bunch of output, then it compiled!

Remember to move your /tmp/john-1.8.0-jumbo-1 directory somewhere OUT of tmp if you decide you want to keep it. e.g. To move it to your home directory do:

If you want to temporarily add it to your path so you can just run the commands from anywhere, do:

John The Ripper For Mac

Happy cracking!