brute-forcing NTLM HTTP Authentication

From: Jason binger (cisspstudy@yahoo.com)
Date: 09/29/01

Previous message: Dan Stofl: "Wireless discovery and WEP cracking on one 802.11b card"
Next in thread: Dave Aitel: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Dave Aitel: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Vanja Hrustic: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Denis Ducamp: "Re: brute-forcing NTLM HTTP Authentication"
Reply: freehold@erols.com: "Re: brute-forcing NTLM HTTP Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Message-ID: <20010929004344.51573.qmail@web11702.mail.yahoo.com>
Date: Fri, 28 Sep 2001 17:43:44 -0700 (PDT)
From: Jason binger <cisspstudy@yahoo.com>
Subject: brute-forcing NTLM HTTP Authentication
To: pen-test@securityfocus.com

Does anyone know of a tool or script out there that
can brute-force NTLM web authentication that may be
used on IIS or ISA server.

I know IE explorer is the only browser that supports
this auth method. Does anyone have any papers or link
on how exactly it works? Is it just tunnelled using
HTTP? Or does it use windows auth ports like TCP 139
etc?

I have looked around to no avail. RFP says it will be
in whisker 2.0 but i need it now =]

Any help appreciated.

Jason

__________________________________________________
Do You Yahoo!?
Listen to your Yahoo! Mail messages from any phone.
http://phone.yahoo.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Previous message: Dan Stofl: "Wireless discovery and WEP cracking on one 802.11b card"
Next in thread: Dave Aitel: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Dave Aitel: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Vanja Hrustic: "Re: brute-forcing NTLM HTTP Authentication"
Reply: Denis Ducamp: "Re: brute-forcing NTLM HTTP Authentication"
Reply: freehold@erols.com: "Re: brute-forcing NTLM HTTP Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: brute-forcing NTLM HTTP Authentication
... Subject: brute-forcing NTLM HTTP Authentication ... This list is provided by the SecurityFocus Security Intelligence Alert ...
(Pen-Test)
Re: brute-forcing NTLM HTTP Authentication
... Subject: brute-forcing NTLM HTTP Authentication ... You may take a look at fetchmail, it can make NTLM auth to IMAP servers. ... This list is provided by the SecurityFocus Security Intelligence Alert Service. ...
(Pen-Test)
Re: brute-forcing NTLM HTTP Authentication
... Subject: brute-forcing NTLM HTTP Authentication ... Lophtcrack brute-force between IIs & clients w/ WEC (ME & anything with ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
(Pen-Test)