Security Basics mailing list archives

Re: How does the Cain and Abel SAM dump works?

From: Rob Thompson <my.security.lists () gmail com>
Date: Thu, 17 Jul 2008 19:50:39 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Carlos Madrid wrote:

Some advice.. only try to crack the LM hashes.  They won't be longer
then 14 chars.


It's even better than that.  You're cracking two seven character hashes.
 For a total of fourteen.  It's faster to crack two seven character
passwords, than it is to crack one fourteen character pass.

Lan Manager should NEVER be run in production.

EVER.


Also read a little bit for more info:
http://en.wikipedia.org/wiki/LM_hash

The hashes are best retrieved with dll injection into lsass.

Random link to save me typing:
http://www.lcpsoft.com/english/articles/passwords.htm


On Mon, Jul 14, 2008 at 3:54 AM, Vikas Singhal
<vikas.programmer () gmail com> wrote:

Hi Friends,

Nowaday, I am studying on the Topic - Cracking Windows password.

There are lot of tools out there which can dump LM and NTLM hashes for
you. But as far i know, you can't touch the SAM file when windows is
running, so, how does these tools work.

Is the sam dumped in-memory?

Regards
V



- --
Rob

+-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+
|                         _   |
|  ASCII ribbon campaign ( )  |
|   - against HTML email  X   |
|                        / \  |
|                             |
+-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Ignorance is bliss...

iEYEARECAAYFAkiABPkACgkQcfN68iZZIcdvMwCeKJeICHy5P5yc1P8zrhZ3I9tj
R0MAn24GPdFh0XLZwBrzay0Jm+q+52DZ
=cApK
-----END PGP SIGNATURE-----

Current thread:

Re: Fwd: How does the Cain and Abel SAM dump works?, (continued)
- - - Re: Fwd: How does the Cain and Abel SAM dump works? Jorge L. Vazquez (Jul 16)
    - Re: Fwd: How does the Cain and Abel SAM dump works? Dave Hull (Jul 16)
    - Re: Fwd: How does the Cain and Abel SAM dump works? Ansgar -59cobalt- Wiechers (Jul 16)
    - Message not available
    - Passwords: length vs. complexity (was: How does the Cain and Abel SAM dump works?) Ansgar -59cobalt- Wiechers (Jul 18)
    - RE: Passwords: length vs. complexity (was: How does the Cain and Abel SAM dump works?) Rivest, Philippe (Jul 21)
    - Re: Passwords: length vs. complexity Ansgar -59cobalt- Wiechers (Jul 21)
    - RE: Passwords: length vs. complexity Rivest, Philippe (Jul 21)
    - Re: Passwords: length vs. complexity Ansgar -59cobalt- Wiechers (Jul 21)
    - Message not available
    - Re: Passwords: length vs. complexity Ansgar -59cobalt- Wiechers (Jul 22)
- Re: How does the Cain and Abel SAM dump works? Carlos Madrid (Jul 16)
  - Re: How does the Cain and Abel SAM dump works? Rob Thompson (Jul 18)
- Re: How does the Cain and Abel SAM dump works? Patrick Webster (Jul 16)
  - Re: How does the Cain and Abel SAM dump works? Ansgar -59cobalt- Wiechers (Jul 16)
    - RE: How does the Cain and Abel SAM dump works? Rivest, Philippe (Jul 16)
- Re: Re: Fwd: How does the Cain and Abel SAM dump works? kschindel (Jul 16)
- Re: Fwd: How does the Cain and Abel SAM dump works? krymson (Jul 16)
- Re: Re: Fwd: How does the Cain and Abel SAM dump works? anon (Jul 18)