hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Beginners Section
Hag4r
Dec 7 2003, 11:25 AM
Hi, I want to crack nt, or mssql passwords remotely. But i have some troubles doing it. Normally i uses xscan for it, i have loaded a big wordlist. But the problem is that xscan always seems to stop scanning for the right password after twenty words or so, so this isnt any useful.
Does anybody know a good nt/mssql remote password cracker?

regards
nulladd
Dec 7 2003, 12:29 PM
what version xscan r u using

for nt passwords (assuming you can dump the sam file) LC4, mdrcack and john the ripper are OK
Hag4r
Dec 7 2003, 12:34 PM
im using v1.3 of xscan, because v2.3 is acting strange on my computer.

But i cant dump the sam file, or any other config file containing the password.
Its strictly for remote scanning for passwords.
Andy
Dec 7 2003, 07:46 PM
hscan? ipcscan?
damulint
Dec 8 2003, 02:33 AM
Hi..
I uesd to NtScan..
Nt Brute force is Good..
Your wordlist have many..
ChineseHack

Searching 'ntscan'
Bye
detonator
Dec 8 2003, 02:47 AM
NTSCAN has a backdoor on board biggrin.gif
pieupcmd.exe
ok norton doesn't detect it but NAV is rubbish mad.gif
bitdefender classifies this exe as backdoor trojan
and yes.... when i was trying to delete it it said:
process in use but pskill.exe haven't found it.... so the process is even hidden rolleyes.gif
to remove it i have to reboot my 2000ersystem in dosmode and then delete it over commandshell

greetz

ps: nt and sql scanning remotely ?
looks like a ScriptKiddy question...

babbacool
Dec 8 2003, 08:53 AM
Ntscan has a backdoor trojan ????

Ntscan is classified as a backdoor trojan just because it's a remote scanner i think...

for example the exe file included in fxscanner (remote scanner) is also classified as a backdoor trojan...
batigoooal
Dec 8 2003, 09:23 AM
LoL when your Av tell you, that you have a trojan on an hack tools, go to the Web to verify if your Av don't detect your tools as a trojan.

It's the case of a lot of tools, not only scanner,
detonator
Dec 9 2003, 12:54 AM
hm question :
why runs the pipeupcmd.exe after every system start HIDDEN in the background ?
why the ntscan works perfectly without these exe ?

greetz
blackP0ster
Dec 9 2003, 02:58 PM
i think the problem is the following:

if you connect to the server and send the password, it'll be logged. after propably 20 tryings the login is locked for several minutes.
think that is the real problem.


so long..


black
FiStEh
Dec 9 2003, 04:12 PM
Yeah sounds like that server doesnt like your hammering at it tongue.gif
Must be set up to take max 15 failed attemps or something.
aTahualPa
Dec 22 2003, 06:09 PM
i need beyond it a sql bruteforce scanner or something else, i ve heard about some non public tools. can anybody help sad.gif

aTa
Zearo
Dec 24 2003, 03:54 PM
@blackposter...

your logged but i always thought its just your network name that is logged not the ip
skorpio
Dec 24 2003, 05:29 PM
use :

sqlscan 1.0 or 1.2

find it zone-h biggrin.gif

bye
jimmy
Dec 24 2003, 06:02 PM
for NT

just use pwdump (pwdump2 will do fine) , than after doing a dump; decode the hashes with LC4
zero-maitimax
Dec 25 2003, 12:05 AM
i think av ppl get dummer and dummer.. sinds when is a hacking tool a virus or a worm of even a trojan/backdoor..
northernsky
Dec 28 2003, 12:35 AM
well, they say that those are trojans so people will get rid of them...but yeah, I don't use a lot of virus protection because I don't like my tools disappearing.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.