FW: AD password Auditing

From: Brooks, Shane (SBrooks@orangelake.com)
Date: Fri Aug 05 2005 - 16:24:59 EDT

• Next message: Thor (Hammer of God): "Re: Security with USB Devices"
• Previous message: Irene Abezgauz: "RE: How to get a reverse Shell / VNC from a writable directory on a remote web server."
• Maybe in reply to: Lohan Spies: "AD password Auditing"
• Next in thread: okrehel@loews.com: "Re: AD password Auditing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

2 things - pwdump2 (http://www.bindview.com/Services/razor/Utilities/Windows/pwdump2_readme.cfm)
and ophcrack (http://ophcrack.sourceforge.net/ - requires a 1-time download of the rainbow tables (700MB or so - well worth it)

run pwdump2 on the machine to dump the hashes
then load the file into ophcrack which runs it against rainbow tables - really saves time

Shane

-----Original Message-----
From: Lohan Spies [mailto:lohan.spies@ifs-sa.co.za]
Sent: Friday, August 05, 2005 7:43 AM
To: 'pen-test@securityfocus.com'
Subject: AD password Auditing

Hi there,

I want to know how can I copy the AD (Active Directory) database so that I
can run a password cracking tool against the accounts?

Could someone please point me in the right direction regarding the tools to
use and how to copy the db?

Thanks

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

_________________________________________________________

The information contained in this message is privileged, confidential and
intended only for use of the individual or entity addressed above. If you
have received this communication in error, please immediately notify us
by reply and delete the same. Thank you.

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

• Next message: Thor (Hammer of God): "Re: Security with USB Devices"
• Previous message: Irene Abezgauz: "RE: How to get a reverse Shell / VNC from a writable directory on a remote web server."
• Maybe in reply to: Lohan Spies: "AD password Auditing"
• Next in thread: okrehel@loews.com: "Re: AD password Auditing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:42 EDT