Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: A L0phCrack Alternative

From: Paul Halliday <paul.halliday () gmail com>
Date: Wed, 8 Dec 2010 08:19:08 -0400
On Tue, Dec 7, 2010 at 3:42 PM,  <olufemimogaji () gmail com> wrote:

Hello All,

I recently used a trial version of L0phtCrack to perform a password audit of the user accounts in my company's active 
directory. It worked great, revealing all the weak passwords that users had. The only problem is that it's a  trial 
version, and the full versions are just so expensive

Does anyone know about an open source/free alternative that works ok, even if not as good as L0phtcrack. I'll truly 
appreciate any > > tips on this.


There was a good diary entry on SANS recently about this subject:

http://www.isc.sans.org/diary.html?date=2010-11-26

Might be some useful tidbits in there for you.

-- 
Paul Halliday
Ideation | Individualization | Learner | Achiever | Analytical
http://www.pintumbler.org

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: