Penetration Testing mailing list archives

Re: AD password Auditing

From: okrehel () loews com
Date: Fri, 5 Aug 2005 13:04:04 -0400

Lohan,

Pwdump4 and pwdumpv3 will do it. It is a command line tool.

Ondrej Krehel



                                                                           
             Lohan Spies                                                   
             <lohan.spies@ifs-                                             
             sa.co.za>                                                  To 
                                       "'pen-test () securityfocus com'"      
             08/05/2005 07:43          <pen-test () securityfocus com>        
             AM                                                         cc 
                                                                           
                                                                   Subject 
                                       AD password Auditing                
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           




Hi there,

I want to know how can I copy the AD (Active Directory) database so that I
can run a password cracking tool against the accounts?

Could someone please point me in the right direction regarding the tools to
use and how to copy the db?

Thanks

------------------------------------------------------------------------------

FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------





------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

Current thread:

AD password Auditing Lohan Spies (Aug 05)
- Re: AD password Auditing s0u1d13r s0u1d13r (Aug 06)
- Re: AD password Auditing Jerome Athias (Aug 06)
- Re: AD password Auditing okrehel (Aug 06)
- Re: AD password Auditing David Cravshaw (Aug 06)
- RE: AD password Auditing Tonie (Aug 06)
- <Possible follow-ups>
- RE: AD password Auditing Nick Duda (Aug 06)
- Re: AD password Auditing Joe Traband (Aug 06)
  - Re: AD password Auditing Joel Folkerts (Aug 07)
- FW: AD password Auditing Brooks, Shane (Aug 06)
- RE: AD password Auditing Rochford, Paul (Aug 07)
  - RE: AD password Auditing dave kleiman (Aug 08)
  - Re: AD password Auditing Joey Peloquin (Aug 08)
- RE: AD password Auditing Cedric.Baechler (Aug 08)

(Thread continues...)