Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: Syskey

Syskey

From: Nicola Cuomo <ncuomo_at_studenti.unina.it>
Date: Fri, 2 Jan 2004 03:46:10 +0100

Hi, I've written a small paper and some tools to work with "syskeyed"
SAM database.

The paper and the tools don't describe/exploit any new vulnerability
(in the strict sense of the term) but some time ago (more than 1 year
-_-) someone posted on this ml asking for some tool relating Syskey
so..

The paper describe the process Syskey use to encrypt the password
hashes and the tools allow to recover the bootkey/system key from the
registry and to dump the password hashes from a SAM database (like
SAMDUMP).

I've only tested them on Windows 2000 Prof. and they _seem_ to work
-_-, feedback from NT/XP users is appreciated.

English is not my mother language so i hope only it's someway readable
^_^

You can find them on my web page at:

http://studenti.unina.it/~ncuomo/syskey/

Bye, bye. 

-- 
 Nicola                          mailto:ncuomo_at_studenti.unina.it
Received on Jan 02 2004
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos