Skip to content

Radius fixes #5930

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
magnumripper merged 3 commits into from
Jan 4, 2026
Merged

Radius fixes #5930

magnumripper merged 3 commits into from
Jan 4, 2026
+209 −61

Conversation

@magnumripper
Copy link
Member

@magnumripper magnumripper commented Dec 24, 2025

Fixes and tweaks for radius2john.py, network2john.lua and the Radius format itself.

@magnumripper
radius2john.py tweaks
3c4b982 
Protect against invalid UTF-8 (now results in Unicode Replacement
Characters).

Use User-name for login field, if available. Fallback to radius
client IP.  Source and destination addresses are also always put
in uid and gid fields, respectively.
@magnumripper
network2john.lua: Portability fix and Radius improvements
9642872 
Add a try/catch for DHCPv4 parsing.  We were apparently using option
field names that were added to Wireshark/tshark experimentally, and
later renamed.  Ubuntu 24.04 (Wireshark v4.2) had the old names,
Ubuntu 25.04 (Wireshark v4.4) has the new names.  We now try the newer
version's field names first, then fallback to the older version's.

For Radius and CHAP, adds source and destination ip addresses in uid
and gid fields respectively, and hostname to GECOS if found.
@magnumripper
Radius format improvements
1a43f14 
In mode 1, crack all passwords immediately using a get_key() trick,
but also try to avoid false positives (from incorrect shared key).
Add a "cost" for mode [0=find secret 1=find password].
Also various optimizations and bug fixes.
@magnumripper magnumripper assigned solardiz and unassigned solardiz Dec 24, 2025
solardiz
solardiz approved these changes Jan 3, 2026
View reviewed changes
Copy link
Member

@solardiz solardiz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not a full review, but I'm OK with these changes. Maybe also add a NEWS entry?

Also, it's a bit confusing when to use radius2john vs. the LUA script - do we have this documented?

@magnumripper
Copy link
Member Author

magnumripper commented Jan 4, 2026
edited
Loading

Maybe also add a NEWS entry?

Not sure it's worthy of a special mention, it's more of a "many other improvements and bugfixes" thing.

Also, it's a bit confusing when to use radius2john vs. the LUA script - do we have this documented?

I found no documentation, I tried to understand the difference but I'm still confused because they should be essentially the same thing but they aren't.

First of all, the tshark network2john.lua script produces hashes for the actual radius format while radius2john produces hashes for dynamic 1008, 1009 or 1017 formats, depending on type and salt length. They all mention the same whitepaper and its sections 3.1 and 3.3. BTW I guess one difference is you could run tshark "live" while radius2john is pcap only.

What is disturbing is they produce different numbers of hashes from our samples. Not sure why. We should revisit this later and possibly write a README.radius or the like.

Also, there are two versions of radius2john: one in Perl and one in Python. The Perl version is incomplete and outdated and spews out warnings. You even need to edit it for setting required options. I think we should just drop that one.

@magnumripper magnumripper merged commit 195d9f8 into openwall:bleeding-jumbo Jan 4, 2026
33 of 34 checks passed
@magnumripper magnumripper deleted the radius-fixes branch January 4, 2026 01:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@solardiz solardiz solardiz approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@magnumripper @solardiz