Join Malcolm Shore for an in-depth discussion in this video Use John for Windows passwords, part of Learning Kali Linux.
- [Instructor] John the Ripper…can crack password hash files,…which is useful should they be retrieved remotely to Kali.…We've seen that Windows credential editor…or a similar tool can be used to recover Windows hashes…once we're in the system.…Let's assume I've managed to remotely penetrate…this Windows 7 target,…and obtain a command shell.…I'll use WCE to extract the Windows Hashes…and remotely extract them into a file called remhash.txt…I'll transfer this file back…by setting up a Netcat File Receive session on Kali,…and a Netcat Send session on Windows 7.…
Okay, let's look at the listener on Kali.…Now we can transfer the file to Kali.…Okay, that's now transferred.…Let's have a look at it.…We can see we've got a remhash.txt file,…which contains the extracted password hashes.…
Let's try to recover the passwords using John the Ripper.…I just need to set a couple of parameters…to direct the crack.…I want to crack NT hashes,…so I'll set NT as the hash format.…There are a number of modes of password cracking.…The fastest is the dictionary attack,…
This course will give prospective ethical hackers a short overview of the tools in Kali Linux. Cybersecurity expert Malcolm Shore shows how to set up a virtual environment for testing, configure Kali Linux, and install toolsets for information gathering, vulnerability assessment, password and hash cracking, and target exploitation.
Because businesses are connected, they are also exposed. Vulnerability testing helps organizations limit that exposure. This course will help you explore the careers, techniques, and tools behind ethical hacking—one of the most competitive and sought-after IT security skills.
- Overview of Metaploit, Maltego, and Wifite
- Setting up a virtual lab with Oracle VM
- Installing virtual machines and appliances
- Exploring the Kali Linux applications
- Gathering information with DMitry and DNSenum
- Conducting a vulnerability assessment
- Installing OpenVAS and Vega
- Testing passwords
- Exploiting targets
Skill Level Beginner
Q: This course was updated on 06/12/2017. What changed?
A: The following topics were updated: setting up a virtual lab, installing appliances, Windows Credential Editor, using John for Windows passwords, pass the hash, using rainbow tables, exploiting with Armitage, pivoting through a network, and getting stealth and persistent access. In addition, a new video was added that shows how to create Trojans with msfvenom.
1. Setting Up the Virtual Lab
2. Introducing Kali
3. Information Gathering (Understanding the Target)
4. Vulnerability Analysis
5. Passwords and Hashes
6. Exploiting Targets
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.