Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Passwords with Lan Manager (LM) under Windows

From: "Thor (Hammer of God)" <thor () hammerofgod com>
Date: Wed, 21 Sep 2005 19:00:05 -0700
----- Original Message ----- From: "Craig Wright" <cwright () bdosyd com au> 
To: <pand0ra.usa () gmail com>; <pen-test () securityfocus com>
Sent: Wednesday, September 21, 2005 12:32 PM
Subject: RE: Passwords with Lan Manager (LM) under Windows
Even NTLMv2 will break the hashing into chunks which are able to be individually broken down.
I'm not sure what you mean... NTLMv2 uses a single 128bit key for the hash, challenge and response... Or are you referring to the NTLM2 session response key (56+56+16)? If so, that is not the same thing as NTLMv2... Can you elaborate please ? 

t


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: 

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: