HPAVC

home *** CD-ROM | disk | FTP | other *** search

/ HPAVC / HPAVC CD-ROM.iso / TPU.ZIP / TPU.DOC < prev next >

Wrap

Text File | 1992-12-16 | 29KB | 690 lines

┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── │ │ ───────┤ (c) 1992 Sæd&Bræk Productions, Copenhagen, Denmark ├─────── └──────────────────────────────────────────────────────┘ What You have obtained here is a WordList manipulation tool for doing various things to word lists for use with Your favourite PassWord Cracker, eg. CrackerJack by The Jackal or KC9 by Doctor Dissector. While obtaining these PassWord Files might be illegal, and (ab)using the output of Your PassWord Cracker certainly *is* illegal, there is nothing wrong in using a PassWord Cracker or, for that matter, this utility. Nevertheless, i, the author, take no responsibility for anything You might experience by using this tool, be it legal problems, thrashed hard discs or anything else. You use this tool at Your own risk! ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ Before the documentation itself, here's the true story about the birth of TPU: TPU started out as a small utility called AB8STRIP. It was written in Microsoft QBasic, and had one function: It removed all words above 8 characters from a WordList. This might sound a bit primitive, but it was really a help when You needed to use a PassWord Cracker, and You had several words where the first eight characters were the same. One day i was visiting a friend of mine. We had a talk about a powerful WordList maintenance / manipulation tool, and as i was a bit (like in: Pretty much) drunk, i said 'well, i'll have such a tool finished in three days'. When i got sober again, i suddenly remembered that i didn't know two shits about programming anything but basic, and i didnt have a basic compiler, only the QBasic interpreter. But i had just got Turbo Pascal 6.00 (after forgetting everything about TPAS because i had version 4.00 which was crappy), so i said to myself 'well, why not just give it a shot and see if i can make just *something*' .. And so i did! TPU version 0.10ß started 15th of October 1992 at about 1.30 in the morning with a hangover and only 1½ hours of sleep. I made some small routines that did this and that, and thanks to Borlands great help function, i actually learned Turbo Pascal while making TPU. Two days later i called a guy i know to tell him what i had made and to get some inspiration about what to add to TPU. At this point in time TPU had 4 functions of which one of them didn't work, but it was still better than sitting with QEdit and doing the tasks by yourself. After a total of five days i called my friend again and told him what was inside TPU. He did sound amazed, and was quite hooked on testing it. So at the 23rd of October i uploaded TPU version 0.61ß to the two above mentioned guys. Meanwhile TPU just grew and grew, and more new functions were added than bugs were fixed (i haven't actually heard about more than four bugs in total), and all of a sudden TPU was good enough to be tested in the outside world. And now, here it is: Therion's PassWord Utility version 1.00, the program that is to CrackerJack what PWP is to KC9. And i guess You have all noticed that CrackerJack is far superior to KC9 (hint, hint!) .. Phew! .. that's that, now on to the documentation :) .. ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ Here's a bit of explanation about the different functions and tools that has been crammed into TPU. In fact, it is the old help screens that have been changed a bit. Even though You might not need this explanation, please read on, as it also contains some basics about *NIX systems. --==> Generators <==-- - Generate a Random Word List: The Random Word Generator has a handful of options. The 'normal' Random Word Generator outputs any characters (ASCII 32-127). The Letter and digit character generator restricts output to the letter characters a-z, A-Z and the digits 0-9. The Letters Only Generator outputs letter characters only (a-z and A-Z). The Decimal Generator outputs decimal numbers of the selected length. The Hexadecimal Generator outputs Hexadecimal numbers of the selected length (characters 0-9, a-f and A-F). The Unix Compatibility Mode makes sure that the first character in each word is a letter character, except for the Decimal Generator. - Generate the COMPLETE Word List: This function is for the HardCore Hacker. It will generate a complete list of character combinations (ASCII code 32-127) for use with a PassWord Cracker. It has two options. One will generate the complete Word List as described above, and the other will generate the complete Word List with *NIX compatibility (on a *NIX system, the first character in a PassWord *MUST* be a letter character). Then just select the length of the words to output and sit back. --==> Rippers <==-- - Rip Logins and Gecos out of PassWord Files: This function will rip the logins and gecos out of a password file. Sample line from a PassWord File: slugeren:s@X4e%F1s2ER:1350:20:Brian Larsen: .... which means login :password : : :geco TPU will try to trace into the PassWord File to find the first login. This means that it doesn't care about any garbage before the first login (for instance 'cat /etc/passwd' or whatever). Before this function is activated, You are asked whether You want to rip Logins, Gecos or both. Just toggle the on / off switches, and activate the ripper when You have selected what You want. Please read the note about CR / LF formats. --==> Converters <==-- - Convert Text File to Word List: Some people do not have the patience to type long Word Lists. Some do not have the imagination for it, and others just leech them off other people. This is the function for the lazy ones. Just specify the name of a .DOC, .TXT or .WHATEVER (as long as it's an ASCII file), and Convert Txtfile will take each word in the Text File and output them one by one. Of course, this leaves a lot of blanks and a lot of garbage. Convert Txtfile will strip the blanks by itself, but it is recommended that You run a Filter on the output file afterwards. For more on Filters, read about them somewhere above. - CR / LF Tool: The Carriage Return / Line Feed Tool will test any given file for its text format. The PC DOS text format has a Carriage Return followed by a Line Feed after each line, but other Computers and Operating Systems, like the MacIntosh, the Atari, The Amiga and any Computer running *NIX, have their own text format. Some of them have only a CR after each line, others have only a LF. To read a Word (which is in fact a line), TPU wants the Word Lists with the CR / LF format (as i presume that You're running DOS right now). If You want to manipulate a Word List with TPU, and its format is not the CR / LF format, run the CR / LF tool on it. It will determine the format of the Word List, and ask You if You want to convert it. A special note about PassWord Files: When You capture them (with 'cat /etc/passwd'), then the CR / LF format should be okay. But if You DownLoad them via SZ or SX (or whatever), then the format is LF without CR (the *NIX format). CrackerJack doesn't seem to care about this, but if You want to rip Logins or Gecos, then You should convert the PassWord File to CR *and* LF first. --==> General Manipulators <==-- - The Reverse Words function: This function will reverse all the Words in a Word List. Technically, the entire file is reversed, and a CR / LF is added at the end of the file. Of course, this would mean that all CR / LF's would turn into LF / CR's. Well, not with TPU. It AutoMagickally 'flips' them back, so that the file does not have to be converted with the CR / LF tool afterwards. This would also mean that the first word in the output file would be a blank. TPU kills this blank, as i don't think that You have any use for it. For more on CR / LF formats, read the note on the CR / LF Tool above. - Case Manipulation Tool: This Tool will change the Case of the Words in a Word List. It has six different functions: Example: Word = 'sæd&bræk': Upper All would output 'SÆD&BRÆK'. Upper 1st would output 'Sæd&bræk'. Example: Word = 'SÆD&BRÆK': Lower All would output 'sæd&bræk'. Lower 1st would output 'sÆD&BRÆK'. Example: Word = 'SÆD&bræk': Toggle All would output 'sæd&BRÆK'. Toggle 1st would output 'sÆD&bræk'. --==> Creative Manipulators <==-- - Add Words to List with dupe checking: This function lets You brainstorm and type all the words that You can come up with, just like CrackerJack in -STdio mode. The main difference is that TPU will write all these words to a file. But not only that, it will tell You if You enter a word that is already in the list. You can specify an existing file, and TPU will append the words to that file, or You can specify the name of a new file. Dupe checking is turned on in both cases. - Combine Two Word Lists: You know the situation. You've just got (yet) another Word List, and most of the words are in the one You're already using. But the Source told You that he have had success with some of the words, and You don't want to type them in all by Yourself. Why not just use the Combine function ?? The Combine function adds together two Word Lists, and asks You whether it should Sort the output list and kill the dupes. And Bingo! You've got an even bigger Word List to use the next time You run Your PassWord Cracker. And don't worry if both Word Lists are huge. SmartSort <tm> will sort *ANYTHING* of *ANY* size, as long as You've got HardDrive space for it. - Add Prefix to Words and Add Suffix to Words: Funny how easy this sounds, but it's exactly what it does. Example: Word = 'bræk', Prefix = 'sæd&', Output = 'sæd&bræk'. Example: Word = 'bræk', Suffix = '&urin', Output = 'bræk&urin'. Prefixes and Suffixes can be specified together, and can be of any length (as long as word + prefix + suffix does not exceed 253 characters). --==> Destructive Manipulators <==-- - Strip Word Lists and Truncate Word Lists: These functions will cut the words in the specified list down to the size that You specify. With Strip, any words above or below X characters will be thrown away, while the Truncate function will cut it to X characters, Example: Word = 'CokeBottle', Word length = 8. Truncate will output 'CokeBott' to the specified output file. Example: Words 'CokeBottle' and 'Coke', Min length = 6, Max length = 8. Strip would throw both of these words away, as 'Coke' is less than 6 characters, and 'CokeBottle' is above 8. If You don't want any minimum restrictions, just specify 0 as the minimum length (or 1, if You want to get rid of blanks at the same time). If You do not want any maximum limitations, then specify 32 as the maximum length. - Logical NOT Two Word Lists: The well-protected *NIX systems has a built-in Dictionary. The system then disallows its users to choose a PassWord that is in the dictionary. This is only to make life harder for Hackers (Hackers ?? What's Hackers ??). Should You obtain such a dictionary, then You have no use for those words in Your Word Lists. That is why the Logical NOT function is included. Of course, You can also use this function to extract words from a wordlist which are NOT in the list You've just tried .. You are asked for two input files. The first file should be Your Word List and the second should be the Dictionary. When the Logical NOT process is finished, the output file will contain all the words from Your Word File that was NOT found in the Dictionary (or old list). This will save You a lot of time. Time is money. Just send me some .. - Sort Word List and Kill Dupes: This function is very powerful. It sorts a Word List, and kills the words that appears in the List more than once, as well as any blanks, which will save You time when running a PassWord Cracker. Usually, sort routines are very slow. Enter SmartSort <tm>. If You have a Disk Cache, or run TPU from a RamDrive, SmartSort is what You've been looking for for ages. Where DOS Sort would run out of memory, eg. on Word Lists above 64K, SmartSort <tm> just continues. Of course, it will run without a Cache or a RamDrive. No matter the size of Your Word List, it will sort it, and in a satisfactory way. It is fast, smart, and most of all, different from other Sort routines. You'll never want another. --==> Filters <==-- Here is an overview of the different filters: Example: Word = 'sæd&bræk': - Kill Garbage would write 'sdbrk' to the output file. - Replace Garbage With CR/LF would output 's', 'd', 'br' and 'k', thus splitting it into four different words. - Replace Garbage with Spaces would output 's d br k'. - Kill Words With Garbage Entirely would skip the word, as it contains æ and &, which are considered 'garbage' characters. - Kill All Vowels would output the entire word, as it contains no vowels (only a, e, i, o and u are considered vowels). - Kill Words Without Vowels would therefore skip the word. - Kill Words Without Consonants would output the word, as it contains consonants (s, d, b, r and k). - Kill Words Containing Digits would output the word, as no digits are found in it (0-9). - Keep Only Words Beginning With Letters would output the word, as the first character is an 's'. - Keep Only Words Beginning With Upper Case would skip the word, as it begins with a lower-case 's'. - Kill Leading and Trailing Spaces would output the word as it is. Had the word been ' sæd & bræk ', the output would be 'sæd & bræk'. And last, an entirely different filter: - Kill *some* Dupes. This function does not kill all the dupes in a Word List (as Sort / Strip would have done), but it is efficient when eg. converting textfiles to word lists. It takes the words 5'000 at a time, and kills the dupes inside those 5'000 words. This means that it *can* be efficient to run it again afterwards, especially if more than 30% of the words were killed during the first run. ** WARNING ** Kill *some* dupes cuts down all words processed to 8 characters. --==> Externals <==-- - Brute Force Decrypt PassWord Garbled Archives: This function will try to decrypt archives that was garbled (crypted) with a PassWord when it was created. You are required to specify the name of a file inside the archive that You want to decrypt, as this program checks for that file''s existance to determine whether it has been successful in decrypting or not. You can always view an archive, but remember to select the right archive format before activating either the viewer or the decrypter / attacker. If You get bored, or need to use Your computer for other things, just press the <SPACE> button, and the attacker will stop as soon as possible. Currently this function supports .ARJ, .ZIP and .ARC, though only PKXARC is supported as de-ARChiver at the moment (haven't got any others). - Start Your PassWord Cracker: This function allows You to run CrackerJack or KillerCracker from within TPU. Press the appropriate key to select Your favourite PassWord Cracker. If any of the three supported PassWord Crackers are found in DOS's PATH, an asterisk (*) is placed in front of the name. If no asterisk is present, You are prompted for full drive, path and filename of Your PassWord Cracker after selecting which one to use. Input the name of a PassWord File, a Word List, and a Valid File where the output from the PassWord Cracker will be stored, and Your PassWord Cracker will be activated. If You do not have a PassWord Cracker, then contact the place where You got this program. He / She / It / They are *BOUND* to have one. If You do not know what a PassWord Cracker is, i think You're one of those who have to Register this program. Send Cash / Cheque / P.O. A.S.A.P. !!! ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ Phew .. i didn't mean to write *that* much .. on the other hand, it's just some help screens .. Some of the functions are also in PWP, so if You are familiar with PWP, You'll have an idea about what to do. There are no command-line parameters, as everything has been crammed into the menu screen(s). Just start the program and fiddle around for a while to get the hang of it. If in doubt, take a look at the overview screens. Here's some useful hints: - First of all, install a cache :) .. - When You Strip Logins or Strip Geco's, the first ":" in the PWD File MUST be the one after the first login. TPU will run anyway, and strip both logins and Geco's properly, except for the first one. This is because i had to find a way to trace into a file. The Tracing means that You don't have to clean up Your /etc/passwd (PWD Lists tend to start with "cat /etc/passwd" and other post-start-capture pre-start-leeching garbage). - As a Geco can consist of several words, it is recommended that You convert the output from "Strip Geco's" with "Convert Txtfile". - When You've added a prefix and/or suffix, You might want to Kill or Truncate some words. Remember to Sort / Strip afterwards to avoid dupes. - After converting a text file, it is recommended that You run the filter called 'Kill *some* dupes'. Yep, that's right, it won't kill them all, but it will make life a bit easier anyway. Think of how many times a word like "You" appears in an average textfile. Think of how long it would take for Sort and Combine, when the time could have been cut to 50% if You had killed *some* dupes. - Sort / Strip is also recommended after Truncate Words. Remember that "sæd&bræk" and "sæd&bræk&urin" will be the same when truncated to 8 characters. - There's *NO* check for overwriting files, so beware of duping names. However, You can specify full drive:path\filename.ext at ANY 'Enter Filename' prompt, so if You've run out of ideas, just redirect the output to another drive / dir. - How to score 800'000 in Atari's Pac-Man: ...... :) .... No! Not here! - TPU will handle words up to 255 characters long in most cases. Three exceptions to this is Sort, Not and the Kill *some* dupes filter. These three functions have been restricted to a word length of 8 characters, because they use an array. The choice was between 1500 words of 32 characters or 5000 words of 8 characters. I chose the 8, as You don't need any more, as long as You run SmartSort <tm> as the last thing when creating a wordlist, only run NOT on pre-processed wordlists, and use Kill *some* dupes after having killed all garbage with some of the other filters. - Some of the functions might be a bit slow, but it all depends on the size of the WordList that You wish to process (of course!). TPU has been optimized as much as possible, but as far as i know, the only function that is *really* slow in TPU is Logical NOT. But this function just can't get any faster (well, maybe a rewrite in assembly language could do the trick, but then it won't be made by me). ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ Technical stuff (requirements and how to tune the performance of TPU): - TPU requires at least an 80286 CPU. If anybody wants an 8086 / 8088 compatible version, then get in touch with me, and i'll compile a version for You. A specific 80386 version is planned. - TPU will eat about 200K of Your precious RAM, but if You have about 550-600K free low memory, You will have no problems, even when starting CrackerJack, KillerCracker or the Brute Force Archive Decrypter. - It is HIGHLY recommended that You put Your Word Lists on a RamDrive, or at least install a Cache before running TPU. I myself use SMARTDRV.EXE (the one that comes with MicroSoft Windoze 3.1) with a cache size of 1024K, but a RamDrive will increase TPU's performance even more. Just remember that i will not be responsible if You die from boredom while using TPU. - A good idea will be to rename DEARJ.EXE to ARJ.EXE when brute force decrypting ARJ archives, as DEARJ uses less memory than ARJ itself. - If You have EMS or XMS, then You should consider installing 4DOS, the ShareWare COMMAND.COM replacement, as it uses only 256 bytes low memory when activated, both as primary and secondary shell. - TPU will not change the screen mode. This means that You can run it in 43 or 50 line modes without problems, and it can also run in a 25-line window in 50-line mode under multitaskers as DESQview &c., leaving You with screenspace to view the output of ie. CrackerJack. Known bugs: None. Really. With a BetaTeam like the one i've had, there's almost no chance for a bug to remain. Of course, there are *always* bugs, but some of the weird things in TPU aren't bugs, they're just there to show that i'm a bit lazy from time to time. The only thing i can come up with is a special runtime error, which means that You've run out of disc space. As i can't predict the size of the output, i have no chance to prevent this from happening. Just keep an eye on the Free Space display in the top right corner of the main menu. Apart from that, i don't think i need to say more about TPU than: -->> Have fun with the program <<-- ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ How to register TPU: First of all, the version of the program You have obtained now is the unregistered full release version of TPU. It is not crippled in any way, and all the functions are available. TPU is released as ßware, which means that it is absolutely free to use for the sole purpose of creating, manipulating and maintaining WordLists intended for use with PassWord Crackers like CrackerJack and KillerCracker, provided that: 1) If You ever make a tool / utility for Security, Electronic Mail or HPA, You will give me a copy for free and 2) You will consider letting me join Your BetaTeam for Your tool. For all non-HPA use, the registration fee is $399 + p&p (subject to change without notice). Remember, non-HPA use of the unregistered version is illegal, and i have a perfect lawyer. ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ What i used for creating TPU: - Turbo Pascal 6 and 7 and Borland Pascal 7 for the program itself, - TechnoJock's Turbo ToolKit for the Directory Pick Lists, - TheDraw 4.01 by TheSoft for all the screens, - WRITE.PAS by somebody, modified by me, for an easy way of converting the ASCII pictures to Pascal Writeln() statements, - QEdit 2.15 by SemWare for writing this log, READ.ME and BETATEST.ME, - BSORT.BAS by somebody else for inspiration for SmartSort <tm>, - LIST.COM by Vernon Buerg for recovering the source for TPU when my hard disc decided to imitate Chernobyl, - Four (4) visits to Blasen, my local pub, when i got stuck with something. Three out of four times i found the solution there, the last time was just to get plain drunk (not to mention all the times i just went there for the fun and beer), - Twenty (20) Litres of Coca Cola by The Coca Cola Company for curing my hangovers, - Twelve (12) Packages of R¢d Gevalia by Kraft General Foods for getting up in the morning and staying awake at night, - Forty (40) Packages of Kings Favourites by House of Prince for keeping calm when debugging and shortening my life in general, - Thirty (30) Packages of Escort Light by Orlik Tobacco Company and Thirty (30) Packages of Samson Cigarette Paper by Samson Tobacco after i found that i couldn't afford Kings anymore, - Lots of music by Mike Oldfield for relaxation (especially Amarok), - And last, but not least, no sex and no drugs (by nobody) for speeding up the process (I don't do drugs, and i wouldn't have got any sex anyway). Old beta's are available from me. But i guess they're of no value to anybody than myself (saved them just for nostalgia). ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── └──────────────────────────────────────────────────────┘ And last, but probably most, the ThankYouVeryMuch list: A real 100% Thanx Mate! goes to WedLock for getting me drunk and provoking me to start working on TPU. Without him this program wouldn't exist, and without him i would never have learned Turbo Pascal. Thanx Wed! Another real genuine 100% Thanx Mate! goes to Lucifer for being the most active BetaTester and for coming up with small pieces of code for details i didn't really care to fix myself. He has killed many annoying RunTime Errors, because i concentrated on implementing new functions. Thanx Lucy! I have to give a third 100% Thanx Mate! to Durin I for trying real hard to make a FastSort routine for TPU. He really fought hard to make the routine, and ended up finding a couple of bugs in his *compiler*. Tough shit, but great job. Also thanx for all the good TPas stuff i've got from You (although none of it has been used in TPU). Thanx Durin! And the last true blue genuine 100% Thanx Mate! must go to Allan of Café Blasen for listening to all my crap while i gradually got more and more drunk night after night while debugging TPU, and for being a generally great guy. Thanx Allan! A big Hi Guys! goes out to the cool part of PhoenixNet (You know who You are!) for sending me ideas about lots of things (not necessarily related to TPU), and for sending me small, cool programs to betatest. A big FuckOffAndDie! goes out to the inactive part of PhoenixNet for being either inactive or generally lame. Another big FuckOffAndDie goes to my former girlfriend, Maria, for thrashing my HD, thus almost destroying TPU. A third FuckOffAndDie goes to Zephyr for leeching all my ideas, claiming that it was *his* work. And the biggest 100% genuine FuckOffAndDie! goes to Pyre for pissing me off just one too many times. Piss on Your corpse and dance on Your grave! See You guys. Feel free to suggest any enhancements / additions to TPU (if You know how to get in touch, that is!). Yours, Therion PhoenixNet : 20:22/5.23 QSD MailBox: THERION ┌──────────────────────────────────────────────────────┐ ───────┤ Therions PassWord Utility version 1.00 ├─────── │ │ ───────┤ (c) 1992 Sæd&Bræk Productions, Copenhagen, Denmark ├─────── │ │ ───────┤ End of documentation. Hope to hear from You. ├─────── └──────────────────────────────────────────────────────┘