SecureD
Apr 11 2005, 08:41 AM
Hi guys,
Currently decrypting(LC5) a MD5 hash of a password retreived with pwdump2. Short passwords are decrypted fast. Passwords under a length of 8 within 5 hours with bruteforce. But now the point. For passwords longer then 8 I always get the first or last part of the decrypted version:
CODE
Admin NEWS2AL??????? 59437584B022409E08D30849C247BEB7 52F231C469D14904572FE56A3A028B0B 0
Is there a possible way to use this in further decryption so I get the pass faster?
Curious
bonarez
Apr 11 2005, 09:48 AM
think lc is cracking the lm hash!
since lm splits pw's in 2 parts and encrypts them each
SecureD
Apr 11 2005, 12:02 PM
QUOTE(bonarez @ Apr 11 2005, 09:48 AM)
think lc is cracking the lm hash!
since lm splits pw's in 2 parts and encrypts them each
Thanks, I think you are right. For other people more information about LM:
http://www.answers.com/topic/lm-hashBut what I can conclude, I just have to make the charset of the bruteforce audit bigger so It recognizes more passwords for the second part?
And do i have to enable 'crack NTLM Passwords'?
buzzons
Apr 11 2005, 12:08 PM
you are brute forcing, so all it is doing is checking a random string against the password, changing one letter and checking that, it has nothing to do with word lists. The only way to make it faster is to get a better CPU and ram (or join #rainbowcrak on the irc server and post the hash).
You do not need NTLM if its already cracking the password as this was enabled in 2000 / XP and has to be turned on. You only need it on if LC5 wont brute the password.
Buz
bonarez
Apr 11 2005, 01:30 PM
lc5 can do hybrid attacks, meaning it first does a dictionary attack, then a rainbowtable (if tables are present/enabled) then a bruteforce
best way is to make some rainbowtables > you can start a simle set, since the first part of the pw is only alpha I guess the last part will be alpha as well, so a simple alpha table will surely crack it quickly.
SecureD
Apr 11 2005, 02:27 PM
QUOTE(bonarez @ Apr 11 2005, 01:30 PM)
lc5 can do hybrid attacks, meaning it first does a dictionary attack, then a rainbowtable (if tables are present/enabled) then a bruteforce
best way is to make some rainbowtables > you can start a simle set, since the first part of the pw is only alpha I guess the last part will be alpha as well, so a simple alpha table will surely crack it quickly.
But why didn't it be cracked in the first place?
fulvioo
Apr 11 2005, 03:23 PM
Try the site in my signature
Hybr!d
Jun 15 2005, 06:44 AM
Get Cain and Abel the best cracker for loads of encryptions such as MD5,MD4,MD2,LM,Mysql,Cisco,Windows,VNC and so on. It uses Brute Force attack Dictionary attck and Cryptanalysis attack to crask the hash. Heres the link to download the program
http://www.oxid.it/downloads/ca_setup.exe
SecureD
Jun 16 2005, 01:57 AM
Now i use rainbow tables instead of brute forcing ;-) Will work good!
Warlord_David
Jun 16 2005, 06:50 PM
i too, recommend rainbow cracking, it gets the password in a few seconds DEPENDING on your systems performance..
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
