# John The Ripper

John the Ripper is an open-source password cracking tool. It is used to perform dictionary attacks, brute force attacks, or custom password cracking techniques to test and enhance password security. The configuration parameters, as well as the rules and functions applied to the different operating modes, are memorized in the john.conf file



In [None]:
import subprocess

# Constants to store file paths for the password file and wordlist
PASSWORD_FILE = "sha256_passwords.txt"
WORDLIST_FILE = "rockyou.txt"

# Template for creating the command to execute John the Ripper in wordlist mode
JOHN_COMMAND_TEMPLATE = ["john", "--wordlist={wordlist}", "{password_file}"]


def run_john_the_ripper(password_file, wordlist_file):
    """
    Runs the John the Ripper tool to test a password-protected file with a given wordlist.

    Args:
        password_file (str): Path to the file containing password hashes.
        wordlist_file (str): Path to the wordlist for testing the passwords.
    """
    # Build the command dynamically by formatting the template with file paths
    command = [cmd.format(wordlist=wordlist_file, password_file=password_file) for cmd in JOHN_COMMAND_TEMPLATE]
    try:
        # Execute the constructed command using subprocess
        subprocess.run(command, check=True)
    except FileNotFoundError:
        # Handles the case where John the Ripper is not installed or not in PATH
        print("Error: John the Ripper is not installed or not in your PATH.")
    except Exception as error:
        # Handles any other unexpected errors
        print(f"Unhandled error: {error}")


# Run the John the Ripper tool with defined file paths for the password-protected file and wordlist
run_john_the_ripper(PASSWORD_FILE, WORDLIST_FILE)

This attack sequentially tries each password contained in the wordlist, also
applying some manipulations according to some default rules specified in the
configuration file.

In the configuration file there are many rules that can be used for cracking passwords. Rules define how passwords are manipulated to create similar words that different for some characteristics. [Linux/Ubuntu OS] The configuration file is located in /etc/john/john.conf



In [None]:
custom_rules = """
[List.Rules:CustomRules]
# Capitalize the first letter
c Az"[0] Az"[lC]

# Capitalize the last letter
c Az"l Az"C"

# Replace 'a' with '4'
s a 4

# Replace 's' with '5'
s s 5

# Replace 'o' with '0'
s o 0
"""
with open("john.conf", "a") as conf_file:
    conf_file.write("\n" + custom_rules)

In [None]:
# Define a new command template for John the Ripper with the specified format
# john–-wordlist=<wordlist> --format=<algorithm> --rules=DefaultRules <path-file>
JOHN_COMMAND_TEMPLATE_CUSTOM = "john --wordlist={wordlist} --format={algorithm} --rules=CustomRules {password_file}"

def execute_john_with_custom_rules(password_file: str, wordlist_file: str, algorithm: str) -> None:
    """
    Executes John the Ripper using a wordlist and custom cracking rules.

    Args:
        password_file (str): Path to the file containing password hashes.
        wordlist_file (str): Path to the wordlist for testing passwords.
        algorithm (str): The hashing algorithm to be used (e.g., sha256, md5).
    """
    # Build the command by formatting the template with the provided arguments
    command = JOHN_COMMAND_TEMPLATE_CUSTOM.format(
        wordlist=wordlist_file,
        algorithm=algorithm,
        password_file=password_file
    ).split()

    try:
        # Run the command using subprocess
        subprocess.run(command, check=True)
    except FileNotFoundError:
        # Handle missing John the Ripper installation or incorrect PATH
        print("Error: John the Ripper is not installed or not available in your PATH.")
    except subprocess.CalledProcessError as e:
        # Handle execution errors
        print(f"Error during execution: {e}")
    except Exception as error:
        # Handle unforeseen errors
        print(f"An unexpected error occurred: {error}")

# Example usage with custom rules and SHA-256 algorithm
execute_john_with_custom_rules(PASSWORD_FILE, WORDLIST_FILE, "sha256")

In [None]:
# Command to display the results of John the Ripper's cracking session including applied rules
subprocess.run(["john", "--show", "-rules", PASSWORD_FILE], check=True)