<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: [PEN-TEST] Dumping NT password hashes from memory

[PEN-TEST] Dumping NT password hashes from memory

From: Quek, Wei (CA - Calgary) <wquek_at_DELOITTE.CA>
Date: Thu, 23 Nov 2000 11:54:19 -0500

i remember seeing a demo at blackhat where some guys were able to dump an nt
password hash from memory and then reloading it with a different one loaded
from pwdump and using it to log in remotely into another server. here's how
it works;

1) run pwdump on victim machine to retrieve password hashes for say User1
2) create an account on your local machine called User1 and log into it
interactively.
3) run this tool on your local machine to unload the password hash for User1
and replacing it with the password hash from pwdump.
4) net use to the remote victim machine as User1 with the victim password
hash.

does anyone have more information on this?

WEi
Received on Nov 24 2000

This message: [ Message body ]
Next message: Alfred Huger: "Re: [PEN-TEST] Dumping NT password hashes from memory"
Previous message: Masse, Robert: "[PEN-TEST] Disclosure policy when performing pentest"
Next in thread: Alfred Huger: "Re: [PEN-TEST] Dumping NT password hashes from memory"
Reply: Alfred Huger: "Re: [PEN-TEST] Dumping NT password hashes from memory"
Maybe reply: Beauregard, Claude Q: "Re: [PEN-TEST] Dumping NT password hashes from memory"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos