RE: cracking Y2k DC Admin password

From: Hiten Pankhania (hiten.pankhania@vanquisbank.co.uk)
Date: Mon Sep 25 2006 - 07:29:43 EDT


Juan there is this lopthcrack disk, I'm sure this used to be called
PWdump.exe..

Look for ERD commander! This will work

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of juanbabi@yahoo.com
Sent: 23 September 2006 01:45
To: pen-test@securityfocus.com
Subject: cracking Y2k DC Admin password

Hi,

for a pen test in doing I got control on the server and logged as the
local admin. know I need to retrive the admin's password this is the
goal of the pen test from the client side. I know an easy way to crack
the sam file with a live linux cd but I cant boot the server it needs to
be allways up. I tried to use pwdump.exe but it tells me he cand find
the local ADMIN$ shere. so it wont work.does someone knows a good way to
retrive and crack the admin's password.I an really stuck on this...

thanks very much !

Juan

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
00000008bOW
------------------------------------------------------------------------

-------------------------------------------------------------------
Vanquis Bank Limited. Registered office: Colonnade, Sunbridge Road, Bradford BD1 2LQ. Registered number 2558509 England.

Confidentiality. This email (and any attachments) is confidential and intended for the recipient(s) only. This email may include proprietary and/or privileged information. If you receive this email in error, please immediately notify the Vanquis Service desk (servicedesk@vanquisbank.co.uk) and then delete the email (and any attachments). Do not show, distribute or copy the contents of this email to anyone.

Warning. Although Vanquis Bank has taken reasonable precautions to ensure that no viruses are present in this email or attachments, the security of internet communications cannot be guaranteed and therefore, Vanquis Bank will not accept any liability for loss or damage arising from receipt of this email.

Any statements or opinions contained in this email or attachments are those of the author and do not necessarily reflect the views of Vanquis Bank.

-------------------------------------------------------------------

Protect the environment - save paper - do you really need to print this email?

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:00 EDT