Comments (5)
magnumripper
commented on August 15, 2024
Hmm, I suppose the last remark should be rephrased as "the pcap stuff built after john itself". Right now it's SIPdump and vcnpcap2john (nb. wpapcap2john does not use the pcap lib).
from john.
rofl0r
commented on August 15, 2024
seems wpapcap provides its own pcap format parser, which is nice... however it looks like it only cares for little endian machines (it always does a bitswap, plus the ethernet hdr structs dont have endian-aware ifdefs in it, unlike our tcphdr.h)
from john.
magnumripper
commented on August 15, 2024
I'm not 100% sure but I believe you are wrong and @jfoug is one of the better among JtR coders when it comes to endianity. In Process(), it reads the data right into a struct. But it then checks the main_hdr.magic_number for endianity and acts accordingly (swaps stuff).
Anyway that's OT for this issue :-)
from john.
rofl0r
commented on August 15, 2024
ah lol then bROT means "need endian transform". when i glanced over the code it looked like some sort of pcap version check. quite non-obvious. it's also kinda unusual to have 2 different codepaths for endianness instead of just using ntohl() etc, which would get optimized to a NOP on big endian machines.
from john.
magnumripper
commented on August 15, 2024
Static linking is currently out of scope for JtR out-of-the-box, and no-one seems to contribute to it. Closing.
from john.
Related Issues (20)
- mssql05 misses some cracks in AVX512BW builds HOT 15
- Test suite failures HOT 1
- crypt format occasionally fails a `--test-full=0 --format=cpu` run on Ubuntu 22 powerpc64le HOT 13
- Zip2john trows me a lot of zeros in hash HOT 4
- Cash
- pcap2john is not printing anything for HSRP HOT 5
- ./john-samples-main/Keplr_Wallet/.
- ./john-samples-main/Keplr_Wallet/. HOT 3
- Fggdstg HOT 2
- Ripper
- The zip2John command extracts encrypted zip compressed file hash, with garbled file names. HOT 2
- Using John's garbled characters and loading dictionary files HOT 6
- What information is outputted by the `./john --status` command? I have reviewed the documents but have not explained the meaning of the output information. HOT 6
- Jtr
- unable to identify Apple Notes hash HOT 1
- Doesn't find OpenMP on macOS (though libomp is installed) HOT 16
- HDDA not supporting uri containing a colon HOT 8
- 7z2john.exe missing HOT 1
- The hybrid version of john-the-ripper! HOT 1
- instlling bsddb3 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from john.