tex/CIS258/F25IEC_Lab3_Greene_Isaac.tex

\documentclass[12pt]{scrartcl}
\usepackage[T1]{fontenc}
\usepackage[letterpaper]{geometry}
\usepackage{scrlayer-scrpage}

\clearpairofpagestyles

\lohead{F25IEC\_Lab3\_Greene\_Isaac}
\lofoot{No AI used. <ig7.us/ai>.\\Work available under the Esoteric Common License. <ig7.us/license>}
\ohead*{\pagemark}

\begin{document}
\part*{CIS258 Lab 3}
\section{Which passwords did you crack?}
Passwords cracked:\\
- joybird1\\
- kirkles\\
- ddmack

\section{What happen if wrong format used?}
It would get the wrong results every time. I would think that passwords are checked by taking a guess, hashing it, then comparing with the known hash. If you used the wrong algorithm, your guesses would always return a result different from what you wanted.

\section{What is the result of adding custom rules?}
Password is not cracked

\section{Did I manage to crack the password?}
I managed to crack the password, it was "dragon2025". I initially had some problems because I had done \texttt{echo -n dragon2025 | md5sum > test.txt} but that added a hyphen that john couldn't parse.

\section{Part 3}
\subsection{What command did I run to see my user?}
\texttt{whoami}

\subsection{What user am I?}
\texttt{root}

\subsection{What's the password for marlinspike?}
The password is \texttt{marlinspike}

\subsection{What command did I run to see current user?}
\texttt{whoami}

\subsection{Differences between wordlists and brute-force?}
Wordlists are useful because they can narrow down the search from all possible passwords to common passwords. If our goal is simply to find any password, this method can effectively utilize available resources.

If we are trying to obtain the password for a specific user, we can try and brute-force the password because we will need to search for every password. Since we are only trying to get one password, as opposed to several, we can spare the extra compute.

\end{document}