Home page logo
/

pen-test logo Penetration Testing mailing list archives

FW: AD password Auditing
From: "Brooks, Shane" <SBrooks () orangelake com>
Date: Fri, 5 Aug 2005 16:24:59 -0400



2 things - pwdump2 (http://www.bindview.com/Services/razor/Utilities/Windows/pwdump2_readme.cfm)
and ophcrack (http://ophcrack.sourceforge.net/ - requires a 1-time download of the rainbow tables (700MB or so - well 
worth it)

run pwdump2 on the machine to dump the hashes
then load the file into ophcrack which runs it against rainbow tables - really saves time


Shane



-----Original Message-----
From: Lohan Spies [mailto:lohan.spies () ifs-sa co za]
Sent: Friday, August 05, 2005 7:43 AM
To: 'pen-test () securityfocus com'
Subject: AD password Auditing


Hi there,

I want to know how can I copy the AD (Active Directory) database so that I
can run a password cracking tool against the accounts?

Could someone please point me in the right direction regarding the tools to
use and how to copy the db?

Thanks

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------



_________________________________________________________

The information contained in this message is privileged, confidential and 
intended only for use of the individual or entity addressed above.  If you 
have received this communication in error, please immediately notify us
by reply and delete the same.  Thank you. 


------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]