Re: Cracking AD passwords on a domain controller



There are two methods of encrypting passwords in AD, one is reversible, which is fairly easy to break and get the password back from AD, the other is hash-based and could probably be found with brute-force cracking, but will take a lot of time at least.



pokhara@xxxxxxxxx wrote:
Is it possible to crack the passwords in the Active Directory using
such tools ?

if I have a copy of a DC and the file NTDS.DIT can I crack the
passwords ?

I am trying it on my testlab at home .


.