For a hack lab in that I'm doing I reach a point where I get a
htpasswd file in clear in an Apache server.
Is there any tool that given the crypted password I can try to brute
force (or use a dictionary attack) and get the original password? There
are a lot of MD5 password crackers but they don't state if they work for
htpasswd generated passwords.
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
For a hack lab in that I'm doing I reach a point where I get a
htpasswd file in clear in an Apache server.
Is there any tool that given the crypted password I can try to brute
force (or use a dictionary attack) and get the original password? There
are a lot of MD5 password crackers but they don't state if they work for
htpasswd generated passwords.
Thanks!
Miguel
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
[ reply ]