RE: l0phtcrack

["Steve Armstrong" <stevearmstrong () logicallysecure com>]

Yes, but that’s not a bad thing.  The presence of LC5 or VNC on a pen
testers laptop is different to a home users pc.  

The AV and Aspam products are aimed at the home and corporate users with
any fringe markets being a bonus.  

So it is understandable that they classify these tools as being bad as
for most users they are.  

If you put them there yourself and understand what they do, then you are
probably better placed to understand what your AV and ASP am tools are
telling you.

Just be sure you don’t let them aide scan and 'fix' or 'clean up'
problems when they want, I lost over 75 exploits and good example
viruses to that one <sob>. 

Plus AV and Aspam tools are funny beasts to have on pen testers laptops,
yes you want to be free so you trust your own tools and don’t want to
infect the client; but I don’t like having them on my systems as they
can interfere with tools and results - plus they generally hog cpu
power.

Steve A
 

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of ml01
Sent: 28 October 2006 09:50
To: pen-test () securityfocus com
Subject: Re: l0phtcrack

its seems normal these days that anti-virus and anti-adware software
qualifies security tools as "BAD!!!" and starts ringing bells.


Cheers
*Anna.

#---------------------#
On 27 Oct 2006 21:26:57 -0000
wymerzp () sbu edu wrote:

> I have a question for you guys: I have john the ripper as a password
auditing tool which is ok. I would like to have lc5 (l0phtcrack v.5).I
downloaded lc3 from www.securitysoftwaretech.com . I downloaded the
program, scanned it w/avg free, (no virus) executed it, scanned w/
spyware doct && spybot s&d some adware (I don't know if this shows
causality or not because I hadn't scanned before execution like an
idiot. Anyway, when I click on the register link it brings up a generic
search page that screams "ADWARE, SPYWARE, DEATH TO COMP" ect... I
appologize for the verbose post, but my question is, will does anyone
know about the site and where can I get l0phtcrack v.5 from a reputable
source and, if possible, for free? Thanks a lot guys, Peace.
> ----------------------------------------------------------------------
> --
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=70
> 1600000008bOW
> ----------------------------------------------------------------------
> --


--
"The power of accurate observation is frequently called cynicism by
those who don't have it."

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
00000008bOW
------------------------------------------------------------------------


--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.408 / Virus Database: 268.13.14/501 - Release Date:
26/10/2006
 

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.408 / Virus Database: 268.13.14/501 - Release Date:
26/10/2006
 


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------