FW: AD password Auditing
From: Brooks, Shane (SBrooks_at_orangelake.com)
Date: 08/05/05
- Previous message: Irene Abezgauz: "RE: How to get a reverse Shell / VNC from a writable directory on a remote web server."
- Maybe in reply to: Lohan Spies: "AD password Auditing"
- Next in thread: okrehel_at_loews.com: "Re: AD password Auditing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 5 Aug 2005 16:24:59 -0400 To: <pen-test@securityfocus.com>
2 things - pwdump2 (http://www.bindview.com/Services/razor/Utilities/Windows/pwdump2_readme.cfm)
and ophcrack (http://ophcrack.sourceforge.net/ - requires a 1-time download of the rainbow tables (700MB or so - well worth it)
run pwdump2 on the machine to dump the hashes
then load the file into ophcrack which runs it against rainbow tables - really saves time
Shane
-----Original Message-----
From: Lohan Spies [mailto:lohan.spies@ifs-sa.co.za]
Sent: Friday, August 05, 2005 7:43 AM
To: 'pen-test@securityfocus.com'
Subject: AD password Auditing
Hi there,
I want to know how can I copy the AD (Active Directory) database so that I
can run a password cracking tool against the accounts?
Could someone please point me in the right direction regarding the tools to
use and how to copy the db?
Thanks
------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't
Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:
http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------
_________________________________________________________
The information contained in this message is privileged, confidential and
intended only for use of the individual or entity addressed above. If you
have received this communication in error, please immediately notify us
by reply and delete the same. Thank you.
------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't
Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:
http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------
- Previous message: Irene Abezgauz: "RE: How to get a reverse Shell / VNC from a writable directory on a remote web server."
- Maybe in reply to: Lohan Spies: "AD password Auditing"
- Next in thread: okrehel_at_loews.com: "Re: AD password Auditing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
