Security Basics: Re: How does the Cain and Abel SAM dump works?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics mailing list archives

Re: How does the Cain and Abel SAM dump works?

From: "Carlos Madrid" <chalonga () gmail com>
Date: Tue, 15 Jul 2008 17:42:52 -0500

Some advice.. only try to crack the LM hashes.  They won't be longer
then 14 chars.

Also read a little bit for more info:
http://en.wikipedia.org/wiki/LM_hash

The hashes are best retrieved with dll injection into lsass.

Random link to save me typing:
http://www.lcpsoft.com/english/articles/passwords.htm


On Mon, Jul 14, 2008 at 3:54 AM, Vikas Singhal
<vikas.programmer () gmail com> wrote:

Hi Friends,

Nowaday, I am studying on the Topic - Cracking Windows password.

There are lot of tools out there which can dump LM and NTLM hashes for
you. But as far i know, you can't touch the SAM file when windows is
running, so, how does these tools work.

Is the sam dumped in-memory?

Regards
V

By Date By Thread

Current thread:

RE: Passwords: length vs. complexity (was: How does the Cain and Abel SAM dump works?), (continued)
- Re: How does the Cain and Abel SAM dump works? Carlos Madrid (Jul 16)
  - Re: How does the Cain and Abel SAM dump works? Rob Thompson (Jul 18)
- Re: How does the Cain and Abel SAM dump works? Patrick Webster (Jul 16)
  - Re: How does the Cain and Abel SAM dump works? Ansgar -59cobalt- Wiechers (Jul 16)
    - RE: How does the Cain and Abel SAM dump works? Rivest, Philippe (Jul 16)
- Re: Re: Fwd: How does the Cain and Abel SAM dump works? kschindel (Jul 16)