<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Nmap Development: Re: [NSE] pwdump script

Re: [NSE] pwdump script

From: Ron <ron_at_skullsecurity.net>
Date: Tue, 06 Jan 2009 07:25:14 -0600

Raul Siles wrote:
> Hi Ron,
> I think it is a good addition to the nmap users arsenal, and as it is
> just a NSE script, its usage is optional.
> I would add to it pass-the-hash capabilities to authenticate against
> the remote system, with a new option (smbhash), such as:
>
> $ ./nmap -d -p139,445 --script=smb-pwdump --script-args=smbhash=<hash> <host>
>
> The <hash> should be on the LM:NTLM format.
>
> Thanks,
> --
> Raul Siles
> www.raulsiles.com

Hi Raul,

That already exists, and I even called it smbhash. It can be in the
format LM:NTLM, LMNTLM, or just NTLM (I just ignore LM by default).

Ron

-- 
Ron Bowes
http://www.skullsecurity.org/
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Received on Jan 06 2009

This message: [ Message body ]
Next message: Gisle Vanem: "ncat/sys_wrap.c"
Previous message: Raul Siles: "Re: [NSE] pwdump script"
In reply to: Raul Siles: "Re: [NSE] pwdump script"
Next in thread: David Fifield: "Re: [NSE] pwdump script"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]