Penetration Testing mailing list archives
RE: Password Audit (AD Domain hashes)
From: "Paul Melson" <pmelson () gmail com>
Date: Fri, 4 Jun 2010 09:10:47 -0400
I have just searched the old threads around password audits/auditing, and
it
seems most have only focused on SAM dumps for local accounts. I wanted to audit the hashes for AD domain member accounts that from my research live
in
ntds.dit (not seen much info on the structure of this file). Are there any tools that dump hashes from the AD Database ntds.dit so I can import them into Cain/John/Ophcrack etc?
Elcomsoft ESR, run on the domain controller, can dump the password hashes from ntds.dit. PaulM ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Password Audit (AD Domain hashes) Josh_smith (Jun 03)
- Re: Password Audit (AD Domain hashes) Juan Pablo Perez Etchegoyen (Jun 08)
- RE: Password Audit (AD Domain hashes) Kevin Short (Jun 08)
- Re: Password Audit (AD Domain hashes) Jeff Testman (Jun 08)
- Re: Password Audit (AD Domain hashes) Mike Duncan (Jun 08)
- Re: Password Audit (AD Domain hashes) Jeff Testman (Jun 08)
- Re: Password Audit (AD Domain hashes) Mike Duncan (Jun 08)
- Re: Password Audit (AD Domain hashes) ThoughtCancer (Jun 08)
- RE: Password Audit (AD Domain hashes) Paul Melson (Jun 08)