Installing "John the Ripper" - The Password Cracker

"John the Ripper" - is a fast password cracker. Its primary purpose is to detect weak Unix passwords.

Most likely you do not need to install "John the Ripper" system-wide.

Instead, after you extract the distribution archive and possibly compile the source code (see below), you may simply enter the "run" directory and invoke John from there.

Compiling "John the Ripper"

Step 1 : Download the latest version of ""John the Ripper"" and its signature
$ wget
$ wget
$ wget

Step 2 : Confirm the signature

This is a safety measure as we are dealing with dangerous thing.

Install the public key :
$ pgp -ka openwall-signatures.asc

Check the signature :

$ pgp john-1.7.9.tar.bz2.sign john-1.7.9.tar.bz2
gpg: Signature made Wed 23 Nov 2011 01:38:48 PM CAT using RSA key ID 295029F1
gpg: Good signature from "Openwall Project <>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 0C 29 43 AE 1E CD 24 EA 6E 0C B6 EE F5 84 25 69

You will see the message similar to the above. Ignore the warning as long as it says Good signature from "Openwall Project ... ".

The warning is normal, see for more details.

Step 3 : Uncompress and compile the sources
$ tar xvfj john-1.7.9.tar.bz2
$ cd john-1.7.9/src/
$ make
To build John the Ripper, type:
make clean <system>
where SYSTEM can be one of the following :
linux-x86-64-avx Linux, x86-64 with AVX (2011+ Intel CPUs)
linux-x86-64-xop Linux, x86-64 with AVX and XOP (2011+ AMD CPUs)
linux-x86-64 Linux, x86-64 with SSE2 (most common)

Note the make target for your system and type :

$ make clean <system>

Where <system> is the appropriate make target. Alternatively, if your system is not listed, use :
$ make clean generic

If everything goes well, this will create the executables for John and its related utilities under "../run/".

Alternatively, you may copy the entire "run" directory to anywhere you like and use John from there.

Now you can change directory to there and test John, like this :

$ cd ../run/
$ ./john --test
Many salts: 400332 c/s real, 400332 c/s virtual
Only one salt: 383795 c/s real, 391627 c/s virtual
Benchmarking: BSDI DES (x725) [32/32 BS]... DONE
Many salts: 13362 c/s real, 13388 c/s virtual
Only one salt: 13299 c/s real, 13299 c/s virtual
Benchmarking: FreeBSD MD5 [32/32 X2]... DONE
Raw: 9225 c/s real, 9225 c/s virtual

Installing "John the Ripper" on Ubuntu

Execute the next command to install "John the Ripper" on Ubuntu :
$ sudo apt-get install john

Installing "John the Ripper" on CentOS/RHEL

Execute the next command to install "John the Ripper" on CentOS/RHEL :
$ yum install john