Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Password Audit (AD Domain hashes)

From: "Paul Melson" <pmelson () gmail com>
Date: Fri, 4 Jun 2010 09:10:47 -0400
I have just searched the old threads around password audits/auditing, and

it

seems most have only focused on SAM dumps for local accounts. I wanted to
audit the hashes for AD domain member accounts that from my research live

in

ntds.dit (not seen much info on the structure of this file). Are there any
tools that dump hashes from the AD Database ntds.dit so I can import them
into Cain/John/Ophcrack etc? 


Elcomsoft ESR, run on the domain controller, can dump the password hashes
from ntds.dit.

PaulM




------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: