RE: Using schmoo rainbow tables with rcrack

From: Hrishikesh Sivanandhan (hrishikesh.sivanandhan@paladion.net)
Date: Fri Mar 31 2006 - 15:15:15 EST

• Next message: Robin Wood: "analysing captured packets"
• Previous message: Jason: "Re: tcpdump reconstructor"
• In reply to: Per Øyvind Thorsheim: "SV: Using schmoo rainbow tables with rcrack"
• Next in thread: Jerome Athias: "Re: SV: Using schmoo rainbow tables with rcrack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

The error message that has been shown indicates that the downloaded rainbow
table for LM Hashes supports only Windows password of less than or equal to
7 characters. I would suggest you to generate your own rainbow table using
winrtgen which is provided with CAIN & ABEL. Generate rainbow table which
supports sufficient amount of password characters and then try.

Regards,
Hrishi

-----Original Message-----
From: Per Øyvind Thorsheim [mailto:putilutt@online.no]
Sent: Friday, March 31, 2006 9:05 PM
To: 'Ghirai'; pen-test@securityfocus.com
Subject: SV: Using schmoo rainbow tables with rcrack

I've got the same problem with all the shmoo charsets (yes, i've downloaded
them all), and i have also tested them with Cain & Abel (www.oxid.it), also
there without success.

Any clues would be much appreciated.

Regards,
Per

> -----Opprinnelig melding-----
> Fra: Ghirai [mailto:ghirai@ghirai.com]
> Sendt: 31. mars 2006 11:49
> Til: pen-test@securityfocus.com
> Emne: Using schmoo rainbow tables with rcrack
>
> Hello,
>
> I downloaded the schmoo rainbow tables, and wanted to perform
> a few tests on my local machine, but rcrack gives me an error
> when i try the alpha charset:
>
> D:\Rainbow Tables\LM\lm_alpha>rcrack.exe *.rt -h
> xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> lm_alpha#1-7_0_2100x8000000_all.rt:
> this table contains hashes with length 8 only
>
> lm_alpha#1-7_1_2100x8000000_all.rt:
> this table contains hashes with length 8 only
>
> lm_alpha#1-7_2_2100x8000000_all.rt:
> this table contains hashes with length 8 only
>
> lm_alpha#1-7_3_2100x8000000_all.rt:
> this table contains hashes with length 8 only
>
> lm_alpha#1-7_4_2100x8000000_all.rt:
> this table contains hashes with length 8 only
>
> Anyone used the schmoo RTs, and know how to use them properly?
>
> Thanks.
>
> --
> Best regards,
> Ghirai.
>
>
> --------------------------------------------------------------
> ----------------
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> As attacks through web applications continue to rise, you
> need to proactively
> protect your applications from hackers. Cenzic has the most
> comprehensive
> solutions to meet your application security penetration testing and
> vulnerability management needs. You have an option to go with
> a managed
> service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm).
> Download FREE whitepaper on how a managed service can help you:
> http://www.cenzic.com/forms/ec.php?pubid=10025
> And, now for a limited time we can do a FREE audit for you to
> confirm your
> results from other product. Contact us at request@cenzic.com
> --------------------------------------------------------------
> ----------------
>
>

----------------------------------------------------------------------------

--
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
As attacks through web applications continue to rise, you need to
proactively 
protect your applications from hackers. Cenzic has the most comprehensive 
solutions to meet your application security penetration testing and 
vulnerability management needs. You have an option to go with a managed 
service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).
Download FREE whitepaper on how a managed service can help you: 
http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com
----------------------------------------------------------------------------
--
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
As attacks through web applications continue to rise, you need to proactively 
protect your applications from hackers. Cenzic has the most comprehensive 
solutions to meet your application security penetration testing and 
vulnerability management needs. You have an option to go with a managed 
service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). 
Download FREE whitepaper on how a managed service can help you: 
http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com
------------------------------------------------------------------------------

• Next message: Robin Wood: "analysing captured packets"
• Previous message: Jason: "Re: tcpdump reconstructor"
• In reply to: Per Øyvind Thorsheim: "SV: Using schmoo rainbow tables with rcrack"
• Next in thread: Jerome Athias: "Re: SV: Using schmoo rainbow tables with rcrack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:47 EDT