home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
HPAVC
/
HPAVC CD-ROM.iso
/
TPU.ZIP
/
TPU.DOC
< prev
next >
Wrap
Text File
|
1992-12-16
|
29KB
|
690 lines
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
│ │
───────┤ (c) 1992 Sæd&Bræk Productions, Copenhagen, Denmark ├───────
└──────────────────────────────────────────────────────┘
What You have obtained here is a WordList manipulation tool for doing
various things to word lists for use with Your favourite PassWord
Cracker, eg. CrackerJack by The Jackal or KC9 by Doctor Dissector.
While obtaining these PassWord Files might be illegal, and (ab)using the
output of Your PassWord Cracker certainly *is* illegal, there is nothing
wrong in using a PassWord Cracker or, for that matter, this utility.
Nevertheless, i, the author, take no responsibility for anything You
might experience by using this tool, be it legal problems, thrashed hard
discs or anything else. You use this tool at Your own risk!
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
Before the documentation itself, here's the true story about the birth
of TPU:
TPU started out as a small utility called AB8STRIP. It was written in
Microsoft QBasic, and had one function: It removed all words above 8
characters from a WordList. This might sound a bit primitive, but it was
really a help when You needed to use a PassWord Cracker, and You had
several words where the first eight characters were the same.
One day i was visiting a friend of mine. We had a talk about a powerful
WordList maintenance / manipulation tool, and as i was a bit (like in:
Pretty much) drunk, i said 'well, i'll have such a tool finished in
three days'.
When i got sober again, i suddenly remembered that i didn't know two
shits about programming anything but basic, and i didnt have a basic
compiler, only the QBasic interpreter. But i had just got Turbo Pascal
6.00 (after forgetting everything about TPAS because i had version 4.00
which was crappy), so i said to myself 'well, why not just give it a
shot and see if i can make just *something*' ..
And so i did! TPU version 0.10ß started 15th of October 1992 at about
1.30 in the morning with a hangover and only 1½ hours of sleep. I made
some small routines that did this and that, and thanks to Borlands great
help function, i actually learned Turbo Pascal while making TPU. Two
days later i called a guy i know to tell him what i had made and to get
some inspiration about what to add to TPU. At this point in time TPU had
4 functions of which one of them didn't work, but it was still better
than sitting with QEdit and doing the tasks by yourself.
After a total of five days i called my friend again and told him what
was inside TPU. He did sound amazed, and was quite hooked on testing it.
So at the 23rd of October i uploaded TPU version 0.61ß to the two above
mentioned guys.
Meanwhile TPU just grew and grew, and more new functions were added than
bugs were fixed (i haven't actually heard about more than four bugs in
total), and all of a sudden TPU was good enough to be tested in the
outside world.
And now, here it is: Therion's PassWord Utility version 1.00, the
program that is to CrackerJack what PWP is to KC9. And i guess You have
all noticed that CrackerJack is far superior to KC9 (hint, hint!) ..
Phew! .. that's that, now on to the documentation :) ..
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
Here's a bit of explanation about the different functions and tools that
has been crammed into TPU. In fact, it is the old help screens that have
been changed a bit. Even though You might not need this explanation,
please read on, as it also contains some basics about *NIX systems.
--==> Generators <==--
- Generate a Random Word List:
The Random Word Generator has a handful of options.
The 'normal' Random Word Generator outputs any characters
(ASCII 32-127).
The Letter and digit character generator restricts output to the
letter characters a-z, A-Z and the digits 0-9.
The Letters Only Generator outputs letter characters only
(a-z and A-Z).
The Decimal Generator outputs decimal numbers of the selected length.
The Hexadecimal Generator outputs Hexadecimal numbers of the selected
length (characters 0-9, a-f and A-F).
The Unix Compatibility Mode makes sure that the first character in
each word is a letter character, except for the Decimal Generator.
- Generate the COMPLETE Word List:
This function is for the HardCore Hacker. It will generate a complete
list of character combinations (ASCII code 32-127) for use with a
PassWord Cracker.
It has two options. One will generate the complete Word List as
described above, and the other will generate the complete Word List
with *NIX compatibility (on a *NIX system, the first character in a
PassWord *MUST* be a letter character).
Then just select the length of the words to output and sit back.
--==> Rippers <==--
- Rip Logins and Gecos out of PassWord Files:
This function will rip the logins and gecos out of a password file.
Sample line from a PassWord File:
slugeren:s@X4e%F1s2ER:1350:20:Brian Larsen: .... which means
login :password : : :geco
TPU will try to trace into the PassWord File to find the first login.
This means that it doesn't care about any garbage before the first
login (for instance 'cat /etc/passwd' or whatever).
Before this function is activated, You are asked whether You want to
rip Logins, Gecos or both. Just toggle the on / off switches, and
activate the ripper when You have selected what You want.
Please read the note about CR / LF formats.
--==> Converters <==--
- Convert Text File to Word List:
Some people do not have the patience to type long Word Lists. Some do
not have the imagination for it, and others just leech them off other
people.
This is the function for the lazy ones. Just specify the name of a
.DOC, .TXT or .WHATEVER (as long as it's an ASCII file), and Convert
Txtfile will take each word in the Text File and output them one by
one.
Of course, this leaves a lot of blanks and a lot of garbage. Convert
Txtfile will strip the blanks by itself, but it is recommended that
You run a Filter on the output file afterwards.
For more on Filters, read about them somewhere above.
- CR / LF Tool:
The Carriage Return / Line Feed Tool will test any given file for its
text format. The PC DOS text format has a Carriage Return followed by
a Line Feed after each line, but other Computers and Operating
Systems, like the MacIntosh, the Atari, The Amiga and any Computer
running *NIX, have their own text format. Some of them have only a CR
after each line, others have only a LF.
To read a Word (which is in fact a line), TPU wants the Word Lists
with the CR / LF format (as i presume that You're running DOS right
now). If You want to manipulate a Word List with TPU, and its format
is not the CR / LF format, run the CR / LF tool on it. It will
determine the format of the Word List, and ask You if You want to
convert it.
A special note about PassWord Files: When You capture them (with 'cat
/etc/passwd'), then the CR / LF format should be okay. But if You
DownLoad them via SZ or SX (or whatever), then the format is LF
without CR (the *NIX format). CrackerJack doesn't seem to care about
this, but if You want to rip Logins or Gecos, then You should convert
the PassWord File to CR *and* LF first.
--==> General Manipulators <==--
- The Reverse Words function:
This function will reverse all the Words in a Word List. Technically,
the entire file is reversed, and a CR / LF is added at the end of the
file.
Of course, this would mean that all CR / LF's would turn into LF /
CR's. Well, not with TPU. It AutoMagickally 'flips' them back, so
that the file does not have to be converted with the CR / LF tool
afterwards.
This would also mean that the first word in the output file would be a
blank. TPU kills this blank, as i don't think that You have any use
for it.
For more on CR / LF formats, read the note on the CR / LF Tool above.
- Case Manipulation Tool:
This Tool will change the Case of the Words in a Word List. It has six
different functions:
Example: Word = 'sæd&bræk': Upper All would output 'SÆD&BRÆK'.
Upper 1st would output 'Sæd&bræk'.
Example: Word = 'SÆD&BRÆK': Lower All would output 'sæd&bræk'.
Lower 1st would output 'sÆD&BRÆK'.
Example: Word = 'SÆD&bræk': Toggle All would output 'sæd&BRÆK'.
Toggle 1st would output 'sÆD&bræk'.
--==> Creative Manipulators <==--
- Add Words to List with dupe checking:
This function lets You brainstorm and type all the words that You can
come up with, just like CrackerJack in -STdio mode.
The main difference is that TPU will write all these words to a file.
But not only that, it will tell You if You enter a word that is
already in the list.
You can specify an existing file, and TPU will append the words to
that file, or You can specify the name of a new file. Dupe checking is
turned on in both cases.
- Combine Two Word Lists:
You know the situation. You've just got (yet) another Word List, and
most of the words are in the one You're already using. But the Source
told You that he have had success with some of the words, and You
don't want to type them in all by Yourself.
Why not just use the Combine function ??
The Combine function adds together two Word Lists, and asks You
whether it should Sort the output list and kill the dupes. And Bingo!
You've got an even bigger Word List to use the next time You run Your
PassWord Cracker.
And don't worry if both Word Lists are huge. SmartSort <tm> will sort
*ANYTHING* of *ANY* size, as long as You've got HardDrive space for
it.
- Add Prefix to Words and Add Suffix to Words:
Funny how easy this sounds, but it's exactly what it does.
Example: Word = 'bræk', Prefix = 'sæd&', Output = 'sæd&bræk'.
Example: Word = 'bræk', Suffix = '&urin', Output = 'bræk&urin'.
Prefixes and Suffixes can be specified together, and can be of any
length (as long as word + prefix + suffix does not exceed 253
characters).
--==> Destructive Manipulators <==--
- Strip Word Lists and Truncate Word Lists:
These functions will cut the words in the specified list down to the
size that You specify.
With Strip, any words above or below X characters will be thrown away,
while the Truncate function will cut it to X characters,
Example: Word = 'CokeBottle', Word length = 8.
Truncate will output 'CokeBott' to the specified output file.
Example: Words 'CokeBottle' and 'Coke', Min length = 6, Max length = 8.
Strip would throw both of these words away, as 'Coke' is less than 6
characters, and 'CokeBottle' is above 8. If You don't want any minimum
restrictions, just specify 0 as the minimum length (or 1, if You want
to get rid of blanks at the same time). If You do not want any maximum
limitations, then specify 32 as the maximum length.
- Logical NOT Two Word Lists:
The well-protected *NIX systems has a built-in Dictionary. The system
then disallows its users to choose a PassWord that is in the
dictionary. This is only to make life harder for Hackers (Hackers ??
What's Hackers ??).
Should You obtain such a dictionary, then You have no use for those
words in Your Word Lists. That is why the Logical NOT function is
included.
Of course, You can also use this function to extract words from a
wordlist which are NOT in the list You've just tried ..
You are asked for two input files. The first file should be Your Word
List and the second should be the Dictionary. When the Logical NOT
process is finished, the output file will contain all the words from
Your Word File that was NOT found in the Dictionary (or old list).
This will save You a lot of time. Time is money. Just send me some ..
- Sort Word List and Kill Dupes:
This function is very powerful. It sorts a Word List, and kills the
words that appears in the List more than once, as well as any blanks,
which will save You time when running a PassWord Cracker.
Usually, sort routines are very slow. Enter SmartSort <tm>. If You
have a Disk Cache, or run TPU from a RamDrive, SmartSort is what
You've been looking for for ages. Where DOS Sort would run out of
memory, eg. on Word Lists above 64K, SmartSort <tm> just continues.
Of course, it will run without a Cache or a RamDrive. No matter the
size of Your Word List, it will sort it, and in a satisfactory way.
It is fast, smart, and most of all, different from other Sort
routines. You'll never want another.
--==> Filters <==--
Here is an overview of the different filters:
Example: Word = 'sæd&bræk':
- Kill Garbage would write 'sdbrk' to the output file.
- Replace Garbage With CR/LF would output 's', 'd', 'br' and 'k', thus
splitting it into four different words.
- Replace Garbage with Spaces would output 's d br k'.
- Kill Words With Garbage Entirely would skip the word, as it contains æ
and &, which are considered 'garbage' characters.
- Kill All Vowels would output the entire word, as it contains no vowels
(only a, e, i, o and u are considered vowels).
- Kill Words Without Vowels would therefore skip the word.
- Kill Words Without Consonants would output the word, as it contains
consonants (s, d, b, r and k).
- Kill Words Containing Digits would output the word, as no digits are
found in it (0-9).
- Keep Only Words Beginning With Letters would output the word, as the
first character is an 's'.
- Keep Only Words Beginning With Upper Case would skip the word, as it
begins with a lower-case 's'.
- Kill Leading and Trailing Spaces would output the word as it is. Had
the word been ' sæd & bræk ', the output would be 'sæd & bræk'.
And last, an entirely different filter:
- Kill *some* Dupes. This function does not kill all the dupes in a Word
List (as Sort / Strip would have done), but it is efficient when eg.
converting textfiles to word lists. It takes the words 5'000 at a
time, and kills the dupes inside those 5'000 words. This means that it
*can* be efficient to run it again afterwards, especially if more than
30% of the words were killed during the first run.
** WARNING **
Kill *some* dupes cuts down all words processed to 8 characters.
--==> Externals <==--
- Brute Force Decrypt PassWord Garbled Archives:
This function will try to decrypt archives that was garbled (crypted)
with a PassWord when it was created.
You are required to specify the name of a file inside the archive that
You want to decrypt, as this program checks for that file''s existance
to determine whether it has been successful in decrypting or not.
You can always view an archive, but remember to select the right
archive format before activating either the viewer or the decrypter /
attacker.
If You get bored, or need to use Your computer for other things, just
press the <SPACE> button, and the attacker will stop as soon as
possible.
Currently this function supports .ARJ, .ZIP and .ARC, though only
PKXARC is supported as de-ARChiver at the moment (haven't got any
others).
- Start Your PassWord Cracker:
This function allows You to run CrackerJack or KillerCracker from
within TPU.
Press the appropriate key to select Your favourite PassWord Cracker.
If any of the three supported PassWord Crackers are found in DOS's
PATH, an asterisk (*) is placed in front of the name.
If no asterisk is present, You are prompted for full drive, path and
filename of Your PassWord Cracker after selecting which one to use.
Input the name of a PassWord File, a Word List, and a Valid File where
the output from the PassWord Cracker will be stored, and Your PassWord
Cracker will be activated.
If You do not have a PassWord Cracker, then contact the place where
You got this program. He / She / It / They are *BOUND* to have one.
If You do not know what a PassWord Cracker is, i think You're one of
those who have to Register this program. Send Cash / Cheque / P.O.
A.S.A.P. !!!
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
Phew .. i didn't mean to write *that* much .. on the other hand, it's
just some help screens ..
Some of the functions are also in PWP, so if You are familiar with PWP,
You'll have an idea about what to do. There are no command-line
parameters, as everything has been crammed into the menu screen(s). Just
start the program and fiddle around for a while to get the hang of it.
If in doubt, take a look at the overview screens.
Here's some useful hints:
- First of all, install a cache :) ..
- When You Strip Logins or Strip Geco's, the first ":" in the PWD File
MUST be the one after the first login. TPU will run anyway, and strip
both logins and Geco's properly, except for the first one. This is
because i had to find a way to trace into a file. The Tracing means
that You don't have to clean up Your /etc/passwd (PWD Lists tend to
start with "cat /etc/passwd" and other post-start-capture
pre-start-leeching garbage).
- As a Geco can consist of several words, it is recommended that You
convert the output from "Strip Geco's" with "Convert Txtfile".
- When You've added a prefix and/or suffix, You might want to Kill or
Truncate some words. Remember to Sort / Strip afterwards to avoid
dupes.
- After converting a text file, it is recommended that You run the
filter called 'Kill *some* dupes'. Yep, that's right, it won't kill
them all, but it will make life a bit easier anyway.
Think of how many times a word like "You" appears in an average
textfile. Think of how long it would take for Sort and Combine, when
the time could have been cut to 50% if You had killed *some* dupes.
- Sort / Strip is also recommended after Truncate Words. Remember that
"sæd&bræk" and "sæd&bræk&urin" will be the same when truncated to 8
characters.
- There's *NO* check for overwriting files, so beware of duping names.
However, You can specify full drive:path\filename.ext at ANY 'Enter
Filename' prompt, so if You've run out of ideas, just redirect the
output to another drive / dir.
- How to score 800'000 in Atari's Pac-Man: ...... :) .... No! Not here!
- TPU will handle words up to 255 characters long in most cases. Three
exceptions to this is Sort, Not and the Kill *some* dupes filter.
These three functions have been restricted to a word length of 8
characters, because they use an array. The choice was between 1500
words of 32 characters or 5000 words of 8 characters. I chose the 8,
as You don't need any more, as long as You run SmartSort <tm> as the
last thing when creating a wordlist, only run NOT on pre-processed
wordlists, and use Kill *some* dupes after having killed all garbage
with some of the other filters.
- Some of the functions might be a bit slow, but it all depends on the
size of the WordList that You wish to process (of course!). TPU has
been optimized as much as possible, but as far as i know, the only
function that is *really* slow in TPU is Logical NOT. But this
function just can't get any faster (well, maybe a rewrite in assembly
language could do the trick, but then it won't be made by me).
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
Technical stuff (requirements and how to tune the performance of TPU):
- TPU requires at least an 80286 CPU. If anybody wants an 8086 / 8088
compatible version, then get in touch with me, and i'll compile a
version for You. A specific 80386 version is planned.
- TPU will eat about 200K of Your precious RAM, but if You have about
550-600K free low memory, You will have no problems, even when
starting CrackerJack, KillerCracker or the Brute Force Archive
Decrypter.
- It is HIGHLY recommended that You put Your Word Lists on a RamDrive,
or at least install a Cache before running TPU. I myself use
SMARTDRV.EXE (the one that comes with MicroSoft Windoze 3.1) with a
cache size of 1024K, but a RamDrive will increase TPU's performance
even more. Just remember that i will not be responsible if You die
from boredom while using TPU.
- A good idea will be to rename DEARJ.EXE to ARJ.EXE when brute force
decrypting ARJ archives, as DEARJ uses less memory than ARJ itself.
- If You have EMS or XMS, then You should consider installing 4DOS, the
ShareWare COMMAND.COM replacement, as it uses only 256 bytes low
memory when activated, both as primary and secondary shell.
- TPU will not change the screen mode. This means that You can run it in
43 or 50 line modes without problems, and it can also run in a 25-line
window in 50-line mode under multitaskers as DESQview &c., leaving You
with screenspace to view the output of ie. CrackerJack.
Known bugs: None. Really. With a BetaTeam like the one i've had, there's
almost no chance for a bug to remain. Of course, there are *always*
bugs, but some of the weird things in TPU aren't bugs, they're just
there to show that i'm a bit lazy from time to time.
The only thing i can come up with is a special runtime error, which
means that You've run out of disc space. As i can't predict the size of
the output, i have no chance to prevent this from happening. Just keep
an eye on the Free Space display in the top right corner of the main
menu.
Apart from that, i don't think i need to say more about TPU than:
-->> Have fun with the program <<--
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
How to register TPU:
First of all, the version of the program You have obtained now is the
unregistered full release version of TPU. It is not crippled in any way,
and all the functions are available.
TPU is released as ßware, which means that it is absolutely free to use
for the sole purpose of creating, manipulating and maintaining WordLists
intended for use with PassWord Crackers like CrackerJack and
KillerCracker, provided that:
1) If You ever make a tool / utility for Security, Electronic Mail or
HPA, You will give me a copy for free and
2) You will consider letting me join Your BetaTeam for Your tool.
For all non-HPA use, the registration fee is $399 + p&p (subject to
change without notice). Remember, non-HPA use of the unregistered
version is illegal, and i have a perfect lawyer.
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
What i used for creating TPU:
- Turbo Pascal 6 and 7 and Borland Pascal 7 for the program itself,
- TechnoJock's Turbo ToolKit for the Directory Pick Lists,
- TheDraw 4.01 by TheSoft for all the screens,
- WRITE.PAS by somebody, modified by me, for an easy way of converting
the ASCII pictures to Pascal Writeln() statements,
- QEdit 2.15 by SemWare for writing this log, READ.ME and BETATEST.ME,
- BSORT.BAS by somebody else for inspiration for SmartSort <tm>,
- LIST.COM by Vernon Buerg for recovering the source for TPU when my
hard disc decided to imitate Chernobyl,
- Four (4) visits to Blasen, my local pub, when i got stuck with
something. Three out of four times i found the solution there, the
last time was just to get plain drunk (not to mention all the times i
just went there for the fun and beer),
- Twenty (20) Litres of Coca Cola by The Coca Cola Company for curing my
hangovers,
- Twelve (12) Packages of R¢d Gevalia by Kraft General Foods for getting
up in the morning and staying awake at night,
- Forty (40) Packages of Kings Favourites by House of Prince for keeping
calm when debugging and shortening my life in general,
- Thirty (30) Packages of Escort Light by Orlik Tobacco Company and
Thirty (30) Packages of Samson Cigarette Paper by Samson Tobacco after
i found that i couldn't afford Kings anymore,
- Lots of music by Mike Oldfield for relaxation (especially Amarok),
- And last, but not least, no sex and no drugs (by nobody) for speeding
up the process (I don't do drugs, and i wouldn't have got any sex
anyway).
Old beta's are available from me. But i guess they're of no value to
anybody than myself (saved them just for nostalgia).
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
└──────────────────────────────────────────────────────┘
And last, but probably most, the ThankYouVeryMuch list:
A real 100% Thanx Mate! goes to WedLock for getting me drunk and
provoking me to start working on TPU. Without him this program wouldn't
exist, and without him i would never have learned Turbo Pascal.
Thanx Wed!
Another real genuine 100% Thanx Mate! goes to Lucifer for being the most
active BetaTester and for coming up with small pieces of code for
details i didn't really care to fix myself. He has killed many annoying
RunTime Errors, because i concentrated on implementing new functions.
Thanx Lucy!
I have to give a third 100% Thanx Mate! to Durin I for trying real hard
to make a FastSort routine for TPU. He really fought hard to make the
routine, and ended up finding a couple of bugs in his *compiler*. Tough
shit, but great job. Also thanx for all the good TPas stuff i've got
from You (although none of it has been used in TPU).
Thanx Durin!
And the last true blue genuine 100% Thanx Mate! must go to Allan of
Café Blasen for listening to all my crap while i gradually got more and
more drunk night after night while debugging TPU, and for being a
generally great guy.
Thanx Allan!
A big Hi Guys! goes out to the cool part of PhoenixNet (You know who You
are!) for sending me ideas about lots of things (not necessarily related
to TPU), and for sending me small, cool programs to betatest.
A big FuckOffAndDie! goes out to the inactive part of PhoenixNet for
being either inactive or generally lame.
Another big FuckOffAndDie goes to my former girlfriend, Maria, for
thrashing my HD, thus almost destroying TPU.
A third FuckOffAndDie goes to Zephyr for leeching all my ideas, claiming
that it was *his* work.
And the biggest 100% genuine FuckOffAndDie! goes to Pyre for pissing me
off just one too many times. Piss on Your corpse and dance on Your
grave!
See You guys. Feel free to suggest any enhancements / additions to TPU
(if You know how to get in touch, that is!).
Yours,
Therion
PhoenixNet : 20:22/5.23
QSD MailBox: THERION
┌──────────────────────────────────────────────────────┐
───────┤ Therions PassWord Utility version 1.00 ├───────
│ │
───────┤ (c) 1992 Sæd&Bræk Productions, Copenhagen, Denmark ├───────
│ │
───────┤ End of documentation. Hope to hear from You. ├───────
└──────────────────────────────────────────────────────┘