Re: Windows 2K/XP/2K3 password question
From: Matt Gibson (mattg_at_blueedgetech.ca)
Date: 03/30/05
- Next message: Jeff Cochran: "Re: Local Intranet Zone question"
- Previous message: Mark Randall: "Re: block a user from deleting their temp internet files"
- In reply to: Shangwu: "Windows 2K/XP/2K3 password question"
- Next in thread: Roger Abell: "Re: Windows 2K/XP/2K3 password question"
- Reply: Roger Abell: "Re: Windows 2K/XP/2K3 password question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 29 Mar 2005 14:18:45 -0800
One way hash.
You can use tools like dumpsec to dump the SAM.
Matt Gibson - GSEC
"Shangwu" <sqi@nospam.net> wrote in message
news:ulLh91JNFHA.3784@TK2MSFTNGP12.phx.gbl...
> Hello,
>
> Is it possible to retrieve the password of a service's logon account in
> user mode program or kernel mode driver?
> How does Windows save a password? I know it is saved in SAM registry? Does
> Windows encrypt a password in one way (hash, non-decryptable) or two ways
> (decryptable) approach?
>
> Thanks,
> Shangwu
>
- Next message: Jeff Cochran: "Re: Local Intranet Zone question"
- Previous message: Mark Randall: "Re: block a user from deleting their temp internet files"
- In reply to: Shangwu: "Windows 2K/XP/2K3 password question"
- Next in thread: Roger Abell: "Re: Windows 2K/XP/2K3 password question"
- Reply: Roger Abell: "Re: Windows 2K/XP/2K3 password question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
