Review Author: Dennis
Size: 362.2 MB
I accidentally came across this one on my random internet quests. Its a program that tries to crack windows passwords using rainbow tables. Here are some of the featured listed by the author:
- » Runs on Windows, Linux and Mac OS X (intel).
- » Cracks LM and NTLM hashes.
- » Free tables available for alphanumeric LM hashes.
- » Loads hashes from local SAM, remote SAM.
- » Loads hashes from encrypted SAM recovered from a Windows partition.
So I downloaded the image, burned it and let it boot. The boot time was quick, even on my 2Ghz machine; took approx 1 minute to load the full slax OS with fluxbox as window manager.
When that is done, ophcrack starts automatically and start immediately preloading the tables (4 of them on the disk). This does take a long time; i clocked it on 8 mins to fully load the tables. After that it starts cracking the passwords without any user intervention. I clocked times too see how long it takes to crack some passes. These times include the loading of the the rainbow tables:
- » blelele: 501.34 seconds
- » omg1337: 524.26 seconds
- » severanceisg4y 609.11 seconds
- » governmentsec: 506.79 seconds
Its a good LiveCD that can crack windows passwords within a reasonable time. The loading of the tables take a long time, while the cracking of the passwords themselves take usually in seconds. One may think that the tables are too small, but i think you can easely modify the ISO, put bigger tables in it and burn a DVD instead of a CD. It does the job quite good, no user intervention needed, but it doesnt cut the mission-impossible-hanging-down-from-the-ceiling-cracking-passwords-fast for me. If i really want to get fast into a system i rather go with Offline NT Password & Registry Editor or equivalement. But it is a very nice (n00b friendly) livecd if you have the time for it
One of the developers mailed me.
You wrote: "only 362.2 MB in size i thought "WTF? rainbow tables are muuuch bigger, this must be a joke"
The truth is, most people use rainbowcrack, and that is a very lazy
implementation of rainbow tables.
Ophcrack uses tables that are 10 to 30 times smaller, because we use all
known optimizations (we should know them, since we invented rainbow tables).