Re: Password Dump
From: chris@nospam.comDate: 05/29/02
- Next message: Mike: "Re: Password Dump"
- Previous message: Mike: "Re: Password Dump"
- In reply to: Mike: "Re: Password Dump"
- Next in thread: Mike: "Re: Password Dump"
- Reply: Mike: "Re: Password Dump"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: chris@nospam.com Date: Wed, 29 May 2002 08:48:29 -0700
On Wed, 29 May 2002 15:07:16 GMT, noone@foo.bar.com (Mike) wrote:
>e_ssen@hotmail.com (Sridharan) wrote in
><4afa61fa.0205290443.1e6ea7c4@posting.google.com>:
>
>>Is it possible to get the password dump of a remote machine using a
>>acoount which doesn't have administrative rights....
>>
>>i want to check whether such a provision exists and how to protect
>>myself against such attacks
>>
>>thanks in advane
>>
>
>IMHO, it's not possible. You've to sniff some privileged account's password
>from the wire first.
>Having the administrative rights, pwdump3 can do the job.
>Cheers,
>
>Mike
If you've created a RDISK backup and the machine isn't using NTFS,
then you could grab the backup copy of the SAM. Or boot with a DOS
disk and NTFS and copy the sam file off (might need to zip it first).
Then you can run pwdump3 and L0phtcrack.
It's not hard to sniff for passwords on the network either.
Also make sure you've patched for the Debploit virus.
- Next message: Mike: "Re: Password Dump"
- Previous message: Mike: "Re: Password Dump"
- In reply to: Mike: "Re: Password Dump"
- Next in thread: Mike: "Re: Password Dump"
- Reply: Mike: "Re: Password Dump"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
