{"id":3357,"date":"2011-01-08T21:36:51","date_gmt":"2011-01-08T19:36:51","guid":{"rendered":"http:\/\/blog.lifeoverip.net\/?p=3357"},"modified":"2011-04-17T21:37:35","modified_gmt":"2011-04-17T18:37:35","slug":"john-the-ripper-kullanarak-cisco-type-5-parolalarini-kirma","status":"publish","type":"post","link":"http:\/\/blog.lifeoverip.net\/2011\/01\/08\/john-the-ripper-kullanarak-cisco-type-5-parolalarini-kirma\/","title":{"rendered":"John The Ripper Kullanarak Cisco Type 5 Parolalar\u0131n\u0131 K\u0131rma"},"content":{"rendered":"

\"\"<\/a><\/p>\n

Cisco a\u011f cihazlar\u0131nda iki tip parola vard\u0131r. Bunlar Type 7 ve type 5 parola tipleridir.<\/p>\n

enable secret 5 $1$0a4m$jsbSzU.vytsZFISdJtbQI4
\nenable password 7 062E0A1B76411F2D5C<\/code><\/p>\n

Type 7 kolaca \u201c\u00e7\u00f6z\u00fclebilir\u201d bir algoritma kullanmaktad\u0131r. Internet \u00fczerinden edinilecek \u00e7e\u015fitli ara\u00e7larla type7 parolalar\u0131 rahatl\u0131kla \u00e7\u00f6z\u00fclebilir. (http:\/\/www.ibeast.com\/content\/tools\/CiscoPassword\/index.asp<\/a>)<\/p>\n

Type 5(enable secret), md5+salt kullanarak saklamaktad\u0131r parolay\u0131. \u00d6rnek \u00a0olarak FreeBSD parola tipi al\u0131nm\u0131\u015ft\u0131r. Dolay\u0131s\u0131yla JTR\u2019in Cisco parolalar\u0131n\u0131 k\u0131rmas\u0131 i\u00e7in herhangi bir ek yama gerektirmez.<\/p>\n

\u00d6rnek Cisco type 5 parolas\u0131: \u00a0$1$WhZT$YYEI3f0wwWJGAXtAayK\/Q.<\/strong><\/p>\n

Bu parolay\u0131 cisco_type5 adl\u0131 bir dosyaya ekleyerek a\u015fa\u011f\u0131daki komutla k\u0131rma i\u015flemi ba\u015flat\u0131labilir.<\/p>\n

# .\/john cisco_type5<\/em><\/strong>
\n<\/em>Loaded 1 password hash (FreeBSD MD5 [32\/32])<\/em>
\n<\/em>test \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ?<\/em>
\n<\/em>guesses: 1 \u00a0time: 0:00:00:02 100.00% (2) (ETA: Thu Nov 25
\n03:40:51 2010) \u00a0c\/s: 7116 \u00a0trying: test<\/em><\/p>\n

Burada se\u00e7ilen parola basit oldu\u011fu i\u00e7in kolayl\u0131kla k\u0131r\u0131lm\u0131\u015ft\u0131r. Parolan\u0131n daha zor oldu\u011fu durumlarda
\nJTR\u2019in ileri seviye \u00f6zellikleri kullan\u0131lmas\u0131 gerekebilir.<\/p>\n

Mesela k\u0131r\u0131lmak istenen parolan\u0131n \u00a0JTR\u2019in varsay\u0131lan s\u00f6zl\u00fck listesinde olmad\u0131\u011f\u0131n\u0131 varsayal\u0131m. Bu durumda ya kaba kuvvet denemesi(brute force) ya da s\u00f6zl\u00fck sald\u0131r\u0131s\u0131 denemesi ger\u00e7ekle\u015ftirebiliriz.<\/p>\n

Kaba ku vvet parola sald\u0131r\u0131s\u0131 \u00e7ok uzun s\u00fcrece\u011fi i\u00e7in s\u00f6zl\u00fck y\u00f6ntemini tercih edelim. JTR\u2019a s\u00f6zl\u00fck kullanmas\u0131n\u0131\u00a0 -w:dosya_adi parametresiyle aktarabiliriz. <\/em><\/strong><\/p>\n

# .\/john
\n-w:son_wordlist_turkce cisco_type5_test<\/em><\/strong>
\n<\/em>Loaded 1 password hash (FreeBSD MD5 [32\/32])<\/em>
\n<\/em>guesses: 0 \u00a0time: 0:00:00:04 3.48% (ETA: Thu Nov 25 03:53:43
\n2010) \u00a0c\/s: 7353 \u00a0trying: ow8<\/em>
\n<\/em>deneme \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (bga)<\/em>
\n<\/em>
\n\u00c7\u0131kt\u0131dan g\u00f6r\u00fclece\u011fi gibi JTR\u2019in md5+salt de\u011feri kullan\u0131lan parola formatlar\u0131na kar\u015f\u0131 h\u0131z\u0131 \u00e7ok y\u00fcksek de\u011fil(saniyede ~7500 deneme). Bunun temel nedeni s\u00f6zl\u00fck listesindeki her bir sat\u0131r\u0131 al\u0131p \u00f6ncelikle hash olu\u015fturup sonra varolan hash
\nde\u011feriyle kar\u015f\u0131la\u015ft\u0131rmas\u0131d\u0131r.<\/p>\n

Oysa burada rainbowtable kullanabilseydik i\u015fimiz birka\u00e7 saniye s\u00fcrecekti. Fakat rainbowtable\u2019\u0131 kendimiz olu\u015fturmam\u0131z gerekiyor. Neden? Zira internet \u00fczerinde bizim parolam\u0131z i\u00e7in kullan\u0131lan tuz de\u011ferinin ayn\u0131s\u0131n\u0131n kullan\u0131ld\u0131\u011f\u0131 rainbowtable bulmak pratik olarak imkans\u0131zd\u0131r.<\/p>\n","protected":false},"excerpt":{"rendered":"

Cisco a\u011f cihazlar\u0131nda iki tip parola vard\u0131r. Bunlar Type 7 ve type 5 parola tipleridir. enable secret 5 $1$0a4m$jsbSzU.vytsZFISdJtbQI4 enable password 7 062E0A1B76411F2D5C Type 7 kolaca \u201c\u00e7\u00f6z\u00fclebilir\u201d bir algoritma kullanmaktad\u0131r. Internet \u00fczerinden edinilecek \u00e7e\u015fitli ara\u00e7larla type7 parolalar\u0131 rahatl\u0131kla \u00e7\u00f6z\u00fclebilir. (http:\/\/www.ibeast.com\/content\/tools\/CiscoPassword\/index.asp)<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[29],"tags":[431,319],"_links":{"self":[{"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/posts\/3357"}],"collection":[{"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/comments?post=3357"}],"version-history":[{"count":1,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/posts\/3357\/revisions"}],"predecessor-version":[{"id":3358,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/posts\/3357\/revisions\/3358"}],"wp:attachment":[{"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/media?parent=3357"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/categories?post=3357"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/blog.lifeoverip.net\/wp-json\/wp\/v2\/tags?post=3357"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}