Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

BeatLM for LEAP

From: Hidenobu Seki <seki () atc yamatake co jp>
Date: 21 Apr 2004 05:53:21 -0000


LEAP challenge/response is basically the same as NTLMv1.
You may use BeatLM for LEAP. I don't have LEAP data.
The search speed is more than 5,000,000 trials/sec on Pentium4 (2.4GHz).

For example,
LEAP 8-byte challenge: 1122334455667788
LEAP 24-byte response: B421774A29DAE237892139D55B4AA503663C52CC8205286D

BeatLM needs an input file contains the followings (2 lines). 

Server,Client,Account,Result,Challenge,"LM response","NTLM response"
1.1.1.1,1.1.1.1,user,OK,1122334455667788,B421774A29DAE237892139D55B4AA503663C52CC8205286D,B421774A29DAE237892139D55B4AA503663C52CC8205286D

Kind regards,
urity at SecurityFriday.com

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: