Penetration Testing mailing list archives
RE: Password Audit (AD Domain hashes)
From: Kevin Short <Kevin.Short () cnworks com>
Date: Thu, 3 Jun 2010 15:22:28 -0500
I have used Lophtcrack to access AD directly and pull them in. Have also used pwdump to do the same and import them into LC. Only catch is that you have to have admin credentials. Kevin _____________________________________ Kevin Short, MCSE, MCSA Network Engineer Computers & Networks (O) 901.365.1362 | (C) 901.828.2696 kevin.short () cnworks com | www.cnworks.com -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Josh_smith Sent: Thursday, June 03, 2010 10:25 AM To: pen-test () securityfocus com Subject: Password Audit (AD Domain hashes) Importance: Low Hi Guys, I have just searched the old threads around password audits/auditing, and it seems most have only focused on SAM dumps for local accounts. I wanted to audit the hashes for AD domain member accounts that from my research live in ntds.dit (not seen much info on the structure of this file). Are there any tools that dump hashes from the AD Database ntds.dit so I can import them into Cain/John/Ophcrack etc? PwdumpX sounded promising but havent got a working copy and cannot find a download for it. I have used Pwdump7 which is great but it only extracts data from SAM/SYSTEM registry hives and isnt suitable for domain hashes in ntds.dit, however I havent heard of any tool to get them... Look forward to any replies as I am sure people have audited domain passwords as opposed to local passwords? Best Regards, Josh -- View this message in context: http://old.nabble.com/Password-Audit-%28AD-Domain-hashes%29-tp28769030p2 8769030.html Sent from the Penetration Testing mailing list archive at Nabble.com. ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Password Audit (AD Domain hashes) Josh_smith (Jun 03)
- Re: Password Audit (AD Domain hashes) Juan Pablo Perez Etchegoyen (Jun 08)
- RE: Password Audit (AD Domain hashes) Kevin Short (Jun 08)
- Re: Password Audit (AD Domain hashes) Jeff Testman (Jun 08)
- Re: Password Audit (AD Domain hashes) Mike Duncan (Jun 08)
- Re: Password Audit (AD Domain hashes) Jeff Testman (Jun 08)
- Re: Password Audit (AD Domain hashes) Mike Duncan (Jun 08)
- Re: Password Audit (AD Domain hashes) ThoughtCancer (Jun 08)
- RE: Password Audit (AD Domain hashes) Paul Melson (Jun 08)