RE: Lotus Domino crack http hash tools

From: Miguel Dilaj (mdilaj@nccglobal.com)
Date: Thu Aug 04 2005 - 04:07:18 EDT

• Next message: Bernhard Mueller: "Re: All of the things you need to learn to be a pen-tester (Re: Pen t est basic needs)"
• Previous message: Roni Bachar: "Re: Lotus Domino crack http hash tools"
• In reply to: Victor Chapela: "RE: Lotus Domino crack http hash tools"
• Next in thread: Miguel Dilaj: "RE: Lotus Domino crack http hash tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi all,

Lepton's Crack (the main branch) also compiles on Cygwin on Windows, and we
put some pre-compiled binaries for people not afraid of virus/trojans.
Piero Brunati produced a slightly different branch
(http://www.nestonline.com/lcrack/) that it's supposed to compile cleanly on
VC++.
Both versions support the old R4 Domino hash, the only difference is that
Piero's support LM, whilst the main one has better support for REGEX and
non-printable characters (one of these centuries I'm supposed to merge both
versions, but don't expect that this morning ;-)
Cheers,

Miguel

-----Original Message-----
From: Victor Chapela [mailto:victor@sm4rt.com]
Sent: 04 August 2005 00:23
To: 'Mark Sec'; security-basics@securityfocus.com;
pen-test@securityfocus.com
Subject: RE: Lotus Domino crack http hash tools

Hi Mark,

There are several different crackers for Lotus Domino, remember you have
hashes and also id files. Some of the tools you can google for are:
        - Lodowep (java based for remote password checks)
        - Lepton's Crack or lcrack (for Linux)
        - Lotus Notes Key from www.lostpassword.com or inkey.exe (for id
files)
        - ID Password Recovery or ipr.exe (id files)
        - DominoHunter or dh.pl (is a perl script)
        - and Domino Hash Breaker or dhb.exe (which you already have)

This should give you a good start.

-Victor

***********************************************************************************************************
DISCLAIMER:
This e-mail contains proprietary information, some or all of which may be legally privileged.
It is for the intended recipient only. If an addressing or transmission error has misdirected this e-mail,
please notify the author by replying to this e-mail. If you are not the intended recipient you may not use,
disclose, distribute, copy, print or rely on this e-mail.
***********************************************************************************************************

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

• Next message: Bernhard Mueller: "Re: All of the things you need to learn to be a pen-tester (Re: Pen t est basic needs)"
• Previous message: Roni Bachar: "Re: Lotus Domino crack http hash tools"
• In reply to: Victor Chapela: "RE: Lotus Domino crack http hash tools"
• Next in thread: Miguel Dilaj: "RE: Lotus Domino crack http hash tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:41 EDT