BeatLM for LEAP
From: Hidenobu Seki (seki_at_atc.yamatake.co.jp)
Date: 04/21/04
- Previous message: Jeremy Junginger: "HTTP Manipulation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 21 Apr 2004 05:53:21 -0000 To: pen-test@securityfocus.com('binary' encoding is not supported, stored as-is)
LEAP challenge/response is basically the same as NTLMv1.
You may use BeatLM for LEAP. I don't have LEAP data.
The search speed is more than 5,000,000 trials/sec on Pentium4 (2.4GHz).
For example,
LEAP 8-byte challenge: 1122334455667788
LEAP 24-byte response: B421774A29DAE237892139D55B4AA503663C52CC8205286D
BeatLM needs an input file contains the followings (2 lines).
Server,Client,Account,Result,Challenge,"LM response","NTLM response"
1.1.1.1,1.1.1.1,user,OK,1122334455667788,B421774A29DAE237892139D55B4AA503663C52CC8205286D,B421774A29DAE237892139D55B4AA503663C52CC8205286D
Kind regards,
urity at SecurityFriday.com
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
- Previous message: Jeremy Junginger: "HTTP Manipulation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
