Penetration Testing mailing list archives

Re: Where are Windows "Enforce password history" passwords stored?

From: totiebash () cox net
Date: 31 Aug 2005 05:53:50 -0000

yes, it is stored in HKEY_LOCAL_MACHINE\SECURITY, you need to be running as SYSTEM to be able to view it using REGEDIT. 
 You can use the tool "Cachedump"(http://www.cr0.net:8040/misc/cachedump.html) to dump the hashes and use the tool 
"cachebf" from www.toolcrypt.org to brute force the hash or better yet, you can use my favorite tool "cain and abel" 
from www.oxid.it to extract and brute force the encrypted hashes.  Alternatively, you can also use John the Ripper to 
brute force the hash but you have to install the patch.  There you go I gave you all the tools you need so good luck

Current thread:

RE: Where are Windows "Enforce password history" passwords stored?, (continued)
- RE: Where are Windows "Enforce password history" passwords stored? Tony King (Aug 30)
- Re: Where are Windows "Enforce password history" passwords stored? Jeffrey Denton (Aug 30)
  - Re: Where are Windows "Enforce password history" passwords stored? Jeffrey Denton (Aug 30)
- Re: Where are Windows "Enforce password history" passwords stored? blanc (Aug 30)
- Re: Where are Windows "Enforce password history" passwords stored? Jean-Baptiste Marchand (Aug 30)
- Re: Where are Windows "Enforce password history" passwords stored? James Leighe (Aug 30)
- RE: Where are Windows "Enforce password history" passwords stored? Steve A (Aug 30)
- RE: Where are Windows "Enforce password history" passwords stored? Soluk, Kirk (Aug 30)
  - RE: Where are Windows "Enforce password history" passwords stored? dave kleiman (Aug 30)
- RE: Where are Windows "Enforce password history" passwords stored? Wil.Allsopp (Aug 30)
- Re: Where are Windows "Enforce password history" passwords stored? totiebash (Aug 31)
- RE: Where are Windows "Enforce password history" passwords stored? Nick Duda (Aug 31)