Re: Cracking Ettercap Generated hashes

From: Jan Heisterkamp (janheisterkamp@web.de)
Date: Sat Nov 17 2007 - 08:49:30 EST

• Next message: Kurt Grutzmacher: "Re: Cracking Ettercap Generated hashes"
• Previous message: Shenk, Jerry A: "RE: Cracking Ettercap Generated hashes"
• In reply to: Danux: "Cracking Ettercap Generated hashes"
• Next in thread: Danux: "Re: Cracking Ettercap Generated hashes"
• Reply: Danux: "Re: Cracking Ettercap Generated hashes"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi danuxx,

if the IMS in "Domain : IMS" doesn't mean IP Multimedia Subsystem I
would suggest to give John a chance, if this doesnt't work take less salt...

Regards,
Jan

Danux schrieb:
> Hi Experts,
>
> After testing a client network, i got a hash through Ettercap(ARP
> Spoofing) , but when trying to cracking the hash with RainbowCrack it
> seems not to be a NTLM format, and nothing happens.
> Here i show the hash gathered:
>
> SMB : 172.16.16.135:445 ->
> USER: mjones
> HASH:
> mjones:"":"":1EA3083687301F2E00000000000000000000000000000000:2F8EDA1AD20B80974F86656996787855C5CF3417FD44BF03:BD9AE7964A5E989B
> DOMAIN: IMS
>
> Do you know how to crack hashes gathered from Ettercap(ARP Spoofing)?
>
>

-- 
Grupo Ampersand S.A.
IT-Security Consultants & Auditors
Apdo. 924  Escazu 1250
Costa Rica C.A.
Phone: (506)588-0432
ceo_at_ampersanded.com  [corp.]
janheisterkamp_at_web.de [priv.]
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------

• Next message: Kurt Grutzmacher: "Re: Cracking Ettercap Generated hashes"
• Previous message: Shenk, Jerry A: "RE: Cracking Ettercap Generated hashes"
• In reply to: Danux: "Cracking Ettercap Generated hashes"
• Next in thread: Danux: "Re: Cracking Ettercap Generated hashes"
• Reply: Danux: "Re: Cracking Ettercap Generated hashes"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:13 EDT