cat /etc/passwd (target) -----> password.txt (kali)
cat /etc/shadow (target) -----> shadow.txt (kali)
--unshadow
/usr/sbin/unshadow password.txt shadow.txt > cracked.txt
--crack pwd
/usr/sbin/john /tmp/john/cracked.txt
--注意:
如果之前已经在Kali上破解了,会产生 john.pot文件,密码会存在里面。
重复破解会出现:No password hashes left to crack ,可以把john.pot删掉
参考:https://www.openwall.com/lists/john-users/2012/11/24/2