plinius
Sep 3 2004, 09:00 PM
Hi,
I have some questions about NTLMv2,
a powerpoint slideshow (urity-winsec02) was the only information I could find about cracking NTLMv2 .
Is there anyone who has other info ??
Are there any changes since windows 2000 for the NTLMv2 authentication??
Do you know any cracking tools (not cain) ??
AgentOrange
Sep 4 2004, 09:29 PM
There is a plug-in for Rainbow Crack that allows you to make NTLMv2 hash tables.
RainbowCrack is by far the best tool for cracking hashes. Cain is for kiddies.
As far as capturing hashes, a shadow attack works very well.
Recovering the SAM and system file is really easy and it seems like there is an unlimited number of ways to get them.
Peace out
plinius
Sep 4 2004, 09:41 PM
Hi,
I have a question about what you said:
1)"There is a plug-in for Rainbow Crack that allows you to make NTLMv2 hash tables"
How is this possible, since NTLMv2 makes use of challenge code and user/workgroupname to calculate the passwordhash?
2)Sorry for my ignorance, but what is a shadow-attack, or do you have a link with an easy explanation??
3)"Recovering the SAM and system file is really easy and it seems like there is an unlimited number of ways to get them"
Is the NTLMv2 algorithm also used to encrypt the SAM? I anly knew it was used for IIS/DCOM/NNTP/terminal services/ ... (?) .
Thanks a lot.
packet
Sep 8 2004, 07:14 AM
So how is this about network security? Seems more windoze like or even exploit research? In any case I'm moving it to windows.
--P>G>>
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
