Penetration Testing mailing list archives
FW: AD password Auditing
From: "Brooks, Shane" <SBrooks () orangelake com>
Date: Fri, 5 Aug 2005 16:24:59 -0400
2 things - pwdump2 (http://www.bindview.com/Services/razor/Utilities/Windows/pwdump2_readme.cfm) and ophcrack (http://ophcrack.sourceforge.net/ - requires a 1-time download of the rainbow tables (700MB or so - well worth it) run pwdump2 on the machine to dump the hashes then load the file into ophcrack which runs it against rainbow tables - really saves time Shane -----Original Message----- From: Lohan Spies [mailto:lohan.spies () ifs-sa co za] Sent: Friday, August 05, 2005 7:43 AM To: 'pen-test () securityfocus com' Subject: AD password Auditing Hi there, I want to know how can I copy the AD (Active Directory) database so that I can run a password cracking tool against the accounts? Could someone please point me in the right direction regarding the tools to use and how to copy the db? Thanks ------------------------------------------------------------------------------ FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't Learn the hacker's secrets that compromise wireless LANs. Secure your WLAN by understanding these threats, available hacking tools and proven countermeasures. Defend your WLAN against man-in-the-Middle attacks and session hijacking, denial-of-service, rogue access points, identity thefts and MAC spoofing. Request your complimentary white paper at: http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801 ------------------------------------------------------------------------------- _________________________________________________________ The information contained in this message is privileged, confidential and intended only for use of the individual or entity addressed above. If you have received this communication in error, please immediately notify us by reply and delete the same. Thank you. ------------------------------------------------------------------------------ FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't Learn the hacker's secrets that compromise wireless LANs. Secure your WLAN by understanding these threats, available hacking tools and proven countermeasures. Defend your WLAN against man-in-the-Middle attacks and session hijacking, denial-of-service, rogue access points, identity thefts and MAC spoofing. Request your complimentary white paper at: http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801 -------------------------------------------------------------------------------
Current thread:
- AD password Auditing Lohan Spies (Aug 05)
- Re: AD password Auditing s0u1d13r s0u1d13r (Aug 06)
- Re: AD password Auditing Jerome Athias (Aug 06)
- Re: AD password Auditing okrehel (Aug 06)
- Re: AD password Auditing David Cravshaw (Aug 06)
- RE: AD password Auditing Tonie (Aug 06)
- <Possible follow-ups>
- RE: AD password Auditing Nick Duda (Aug 06)
- Re: AD password Auditing Joe Traband (Aug 06)
- Re: AD password Auditing Joel Folkerts (Aug 07)
- FW: AD password Auditing Brooks, Shane (Aug 06)
- RE: AD password Auditing Rochford, Paul (Aug 07)
- RE: AD password Auditing dave kleiman (Aug 08)
- Re: AD password Auditing Joey Peloquin (Aug 08)
- RE: AD password Auditing Cedric.Baechler (Aug 08)
- Re: RE: AD password Auditing gcehrh (Aug 08)
- RE: AD password Auditing Lohan Spies (Aug 08)
- Re: RE: AD password Auditing gcehrh (Aug 11)
- Re: AD password Auditing yfs us (Aug 11)
- RE: RE: AD password Auditing Beauford, Jason (Aug 11)
- RE: AD password Auditing Distler, Dennis (Aug 12)
(Thread continues...)