Re: Syskey prevents dumping of SAM or Active Directory
From: karl [x y] (jamescagney90210@excite.com)
Date: 08/15/02
- Next message: karl [x y]: "Re: Syskey prevents dumping of SAM or Active Directory"
- Previous message: karl [x y]: "Re: win 2000 log files"
- In reply to: Ritchie: "Re: Syskey prevents dumping of SAM or Active Directory"
- Next in thread: Christoph Kaminski: "Re: Syskey prevents dumping of SAM or Active Directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "karl [x y]" <jamescagney90210@excite.com> Date: Wed, 14 Aug 2002 20:54:56 -0400
"Ritchie" <qiournvdlirhjgiuhdiuh345@hotmail.com> wrote in message
news:aje0r7$1akc67$1@ID-156657.news.dfncis.de...
> "karl [x y]" <jamescagney90210@excite.com> wrote in message
news:#qj9No6QCHA.4304@tkmsftngp08...
> > ... plus I believe if the system is compromised, pwdump3 /l0phtcrack and
> > other methods can still be installed and run locally to obtain the SAM.
I
> > believe this works no matter which syskey method is selected.
>
> I understand that l0phtcrack /cannot/ crack syskey'd sams. The way around
this
> would be to remotely access the target machine using pwdump3 to obtain the
> decrypted hashes. However this would require administrative privileges.
You are correct, "pwdump3 / l0phtcrack" from my post was meant to indicate
that both are required together.
- Next message: karl [x y]: "Re: Syskey prevents dumping of SAM or Active Directory"
- Previous message: karl [x y]: "Re: win 2000 log files"
- In reply to: Ritchie: "Re: Syskey prevents dumping of SAM or Active Directory"
- Next in thread: Christoph Kaminski: "Re: Syskey prevents dumping of SAM or Active Directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
