wei
Jul 25 2003, 11:59 PM
all windows alphanumerical passwords could be cracked within just a few seconds... 
"In 1980 Martin Hellman described a cryptanalytic time-memory trade-off which reduces the time of cryptanalysis by using precalculated data stored in memory. This technique was improved by Rivest before 1982 with the introduction of distinguished points which drastically reduces the number of memory lookups during cryptanalysis. This improved technique has been studied extensively but no new optimisations have been published ever since. We propose a new way of precalculating the data which reduces by two the number of calculations needed during cryptanalysis. Moreover, since the method does not make use of distinguished points, it reduces the overhead due to the variable chain length, which again significantly reduces the number of calculations. As an example
we have implemented an attack on MS-Windows password hashes. Using 1.4GB of data (two CD-ROMs) we can crack 99.9% of all alphanumerical passwords hashes (2 37 ) in 13.6 seconds whereas it takes 101 seconds with the current approach using distinguished points. We show that the gain could be even much higher depending on the param-eters used. "
Instant NT password cracker:
http://lasecpc13.epfl.ch/ntcrack/
poostew
Jul 30 2003, 02:01 AM
They have taken their demo offline. Anyone care to upload a copy somewhere?
The_deViL
Aug 7 2003, 11:18 PM
Quote: We have decided not to release LASEC.s original code and tables for now. However, Claude and Luca (the students who created this demo) would be more than happy to implement a new version as a job.
woutiir
Aug 8 2003, 11:24 AM
It might be useful if someone still got it and post it on the board either here or in the download section, and leave msg here that it's there.
Would rock, can't wait to test this out..
Greetings,
woutiir
Shade
Aug 11 2003, 07:52 AM
Yeah, it's gone.
mind_ruiner
Aug 13 2003, 06:51 PM
I checked around, and a few places noted that it was a "web based demo", so I don't know that there was anything to download except maybe an applet acting as a client for the "real deal" working behind the scenes. Wish I would have seen it in action.
philipnorth
Aug 13 2003, 07:04 PM
| QUOTE (mind_ruiner @ Aug 13 2003, 06:51 PM) |
| I checked around, and a few places noted that it was a "web based demo", so I don't know that there was anything to download except maybe an applet acting as a client for the "real deal" working behind the scenes. Wish I would have seen it in action. |
totally agree, wold have been very nice to see how it works/worked
indyan
Aug 18 2003, 05:24 AM
thats "wei"
i downloaded some files from that site
and got some hashes of my passwords in SAM format but now it doesnt convert those hashes to Proper text format.
donno how to do it...
indyan
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
