Cracking Password-Protected SSH Keys with John the Ripper
I have just found this announcement sent by Solar Designer from the Openwall Project.
It seems that they have added support to crack password-prot ected SSH private keys:
This community-enhanced release integrates preliminary support for several non-hashes, im plemented under Dhiru Kholia’s GSoC 2011 project. Specifically, it supports cracking of OpenSSH’s passphras e-protected SSH protocol 2 private keys, password-protected PDF files with 40-bit and 128-bit RC4 encr yption, and some password-protected RAR archives.
Yes, Dhiru’s SSH key crac ker includes OpenMP parallelization. There’s a limitation, though: this requires OpenSSL 1.0.0 or newer, for thr ead-safety of the interfaces being used. When building or running with older versions of OpenSSL, OpenMP paralle lization in the SSH cracker is automatically disabled. (You can always use MPI instead.)