L0phtcrack Lm Password *empty*

Shang Tsung

Apr 20 2004, 06:28 PM

Hi, sometimes when using L0phtCrack it says *empty* under LM and NTLM Password. Does anyone know what that means and if there is another method of cracking it? Thanks in advanced.

night^man

Apr 20 2004, 06:39 PM

whats the problme ?

Shang Tsung

Apr 20 2004, 06:54 PM

Well I got the password hashes from a sam file off a W2K machine, and now I am trying to crack it however L0phtCrack says *empty*. Does that mean there's no password? Or maybe it's encrypted differently?

Progressor

Apr 20 2004, 07:06 PM

It means that there is no password. LOL

AgentOrange

Apr 20 2004, 07:19 PM

Hmm are you logged in as a super user? Some large comptuer labs don't use the SAM file they do it all via the network. If thats the case then you *could* sniff for it.

Shang Tsung

Apr 20 2004, 07:33 PM

Yep, I have super user rights. I don't know what you mean by not using the SAM file, but I think it's not case here since L0phtCrack was able to crack all the other accounts on that box.

Thanks for the help fellas.

aapje

Apr 20 2004, 07:44 PM

there is no password....

dont-staY

Apr 20 2004, 08:24 PM

Note that Windows 2000 passwords longer than 14 characters will have "*empty*" LM passwords, because the LM hash does not support passwords of this length.

predx

Apr 20 2004, 08:43 PM

ever think of trying a diffrent password cracker? saminside? Proactive Windows Security Explorer?

qcred11

Apr 21 2004, 01:46 AM

QUOTE

ever think of trying a diffrent password cracker? saminside? Proactive Windows Security Explorer?

Yeap try to use something else than LC.
I got some info about Saminside:

Maximal length of the password for the LMHash brute force attack and mask attack - 14 characters.
Maximal length of the password for the NTHash brute force attack and mask attack - 32 characters.
Maximal length of the password for the dictionary attack is 128 characters.
Maximal length of the password in the "Password:" field is 128 characters.
Maximal quantity of users to work on is 8192.

Actually if the password longer than 14 characters it'll gonna take you forever to open it. Try to use sniffer or maybe install keylogger, or social engeneering...

Dinos

Apr 24 2004, 10:35 AM

Could you please post also the version of LC that you are using ?

MadMaddy

Apr 24 2004, 09:14 PM

QUOTE (qcred11 @ Apr 20 2004, 09:46 PM)

QUOTE

ever think of trying a diffrent password cracker? saminside? Proactive Windows Security Explorer?

Yeap try to use something else than LC.
I got some info about Saminside:

Maximal length of the password for the LMHash brute force attack and mask attack - 14 characters.
Maximal length of the password for the NTHash brute force attack and mask attack - 32 characters.
Maximal length of the password for the dictionary attack is 128 characters.
Maximal length of the password in the "Password:" field is 128 characters.
Maximal quantity of users to work on is 8192.

Actually if the password longer than 14 characters it'll gonna take you forever to open it. Try to use sniffer or maybe install keylogger, or social engeneering...

yeah in this case I'd suggest a keylogger or sniffer. Ever if under 14 characters, toss in a special character and you're pretty much out of luck. Work of caution on the keyloggers though, most "commercially" available ones are detected by AV so depending on the setup, try to find a nice homebrew one or give the sniffer methode a try.

qcred11

Apr 25 2004, 05:32 AM

I used to use LC version 4, but lately I'm using Saminside(much faster).
But in your case I suggest to use a keylogger, like MadMaddy said....