hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > The Archives > General Network Security
Bombers
Sep 20 2004, 11:48 AM
Dumped with pwdump2, loaded the hashes in lc5 and it says there is no password set (* empty *) while there is one set!

How is this done? is it a regkey or..

thnx in advance
White Scorpion
Sep 20 2004, 12:28 PM
when a user has used a password longer then 14 characters, it can not be stored in the lanmanhash anymore, and therefore only the nthash is visible...
you need to use another cracker (md5crack) to crack a nthash password...


hope you get it wink.gif
sh4d0w`
Sep 20 2004, 02:42 PM
is it the same in the NTLM column?
White Scorpion
Sep 20 2004, 02:49 PM
huh, i suggest you mean:

administrator:<lanmanhash>:<nthash>

the last one you can crack with md5crack..
sh4d0w`
Sep 20 2004, 03:13 PM
no i meant Bombers for the NTLM column in LC5
White Scorpion
Sep 20 2004, 03:29 PM
bombers? what are those?
sh4d0w`
Sep 20 2004, 06:51 PM
dude, look blink.gif
Bombers is the nickname of the author (of this thread) laugh.gif
White Scorpion
Sep 20 2004, 06:57 PM
oh, yeah laugh.gif stupid, i thought i was still talking to the same guy wink.gif

well, it is time for Bombers to reply !
Bombers
Sep 20 2004, 11:51 PM
ah thanks, now i understand it how this comes.. tnx allot for helping
r3L4x
Sep 21 2004, 12:44 AM
give saminside a whirl, best lm/nth cracker i think
small, fits on a floppy and extremely fast.
http://insidepro.com
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.