Question
Our CNS 340 Lab 3 is about using password dictionary attack to obtain user passwords. For this lab you need to create 3 users: ceo,
Our CNS 340 Lab 3 is about using password dictionary attack to obtain user passwords. For this lab you need to create 3 users: ceo, coo, and cio (all lowercase). The following are the passwords strings for these users respectively: "Password01", "Depaul2016", "P@$$w0rd2016!".
Use the Linux command useradd to add the users and the command passwd command to set their passwords. Use the Kali Linux utility John The Ripper to do the the dictionary password attack as follows:
1. Use the linux command to find the dictionary password.lst file location:
find / -name "password.lst"
2. Next you need to use john the ripper command to attack the three users passwords.
3. In lab 2 we learned how obtain the encrypted string password. Use what you learned in that lab2 to obtain the above users passwords.
Note:
===
You must inject the password.lst file with the passwords of the CEO, and COO only in order for this lab to work.
Here are the commands:
You will need to create the following users with passwords: user password ==== ========= ceo Password01 coo Depaul2016 cio P@$$w0rd2016!
using the following commands:
useradd ceo;passwd ceo useradd coo;passwd coo useradd cio;passwd cio
2. Extract the encrypted passwords from the shadow file:
grep ceo /etc/shadow | cut -d':' -f1-2 > encryptedpass.lst grep coo /etc/shadow | cut -d':' -f1-2 >> encryptedpass.lst grep cio /etc/shadow | cut -d':' -f1-2 >> encryptedpass.lst
3. Find the Dictionary password file location in your kali Linux:
find / -name "password.lst"
4. use "John the ripper" tool to attack the encryted passwords:
john --wordlist=/location/password.lst encryptedpass.lst
Note: ===== In order for the Lab to work you must inject the dictionary file password.lst with the ceo and coo passwords.
echo "Password01" >> password.lst echo "Depaul2016" >> password.lst
Please provide 2 screenshots of the terminal:
1. Screenshot of the file of encrypted passwords encryptedpass.lst
2. Screenshot of the output of the command:
john --wordlist=/location/password.lst encryptedpass.lst
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started