Re: Cracking Ettercap Generated hashes

What you have there are the challenge/response hashes. You can crack
them with Cain & Abel but prepare for it to take a while. You can't use
Rainbowtables as the nonce is unique for every exchange.

There are tables for a constant nonce to crack the first half of a
LANMAN hash. Here are some resources that may help you understand what
can be done with hashes.

On Fri, Nov 16, 2007 at 05:30:17PM -0600, Danux wrote:
Hi Experts,

After testing a client network, i got a hash through Ettercap(ARP
Spoofing) , but when trying to cracking the hash with RainbowCrack it
seems not to be a NTLM format, and nothing happens.
Here i show the hash gathered:

SMB : ->
USER: mjones

Do you know how to crack hashes gathered from Ettercap(ARP Spoofing)?

Danux, CISSP
Chief Information Security Officer
Macula Security Consulting Group

This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

..:[ grutz at jingojango dot net ]:..
GPG fingerprint: 5FD6 A27D 63DB 3319 140F B3FB EC95 2A03 8CB3 ECB4
"There's just no amusing way to say, 'I have a CISSP'."

Attachment: pgpi8xeT49msK.pgp
Description: PGP signature