Presentation is loading. Please wait.

Presentation is loading. Please wait.

Anti-Hacker Tool Kit Password Cracking Brute-Force Tools Chapter 9

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Anti-Hacker Tool Kit Password Cracking Brute-Force Tools Chapter 9"— Presentation transcript:

1 Anti-Hacker Tool Kit Password Cracking Brute-Force Tools Chapter 9
Vicky

2 Introduction “Password” is the key

3 About the password One-way hash Brute-Force Plain Text WZYxAM$5IGD3yl

4 Where is the password ? Shadow Password Solaris DES from /etc/passwd
Mandrake DES from /etc/shadow FreeBSD MD5 from /etc/shadow OpenBSD Blowfish from /etc/master.passwd Windows 2000 from \WINNT\repair\SAM Encrypted Password

5 Start to Cracking John the Ripper Pwdump2 Pwdump3 L0phtCrack SMBGrind
Nbaudit

6 John the Ripper Get the file Uncompress make

7 Benchmark

8 Start to cracking

9 Pwdump Grab a text version of the SAM Task Monitor Find out PID
Get the hashs Grab a text version of the SAM Usage

10 Pwdump3 Pwdump2+remote access Usage

11 L0phtCrack Pwdump + Brute-Force Cracking

12 Removing the LanMan Hash
Why… LanMan 69^7 MD4 96^8 How to… LaMan MD4 LaMan LaMan

13 Lasdump Dump the password from memory No cracking

14 SMBGrind

15 Nbaudit SMBGrind+ Scan address range Specify put file Usage

16 Windows may be more security
Run secpol.msc

17 Summary: Strong password
好膽!賣走 long a-z numbers A-Z

18

19

Download ppt "Anti-Hacker Tool Kit Password Cracking Brute-Force Tools Chapter 9"

Similar presentations

Password Cracking Lesson 10. Why crack passwords?

Password Cracking Lesson 10. Why crack passwords?
The Cain Tool Presented by: Sagar Chivate CS 685F.

The Cain Tool Presented by: Sagar Chivate CS 685F.
Password CrackingSECURITY INNOVATION ©2003 1 Sidebar – Password Cracking We have discussed authentication mechanisms including authenticators. We also.

Password CrackingSECURITY INNOVATION © Sidebar – Password Cracking We have discussed authentication mechanisms including authenticators. We also.
Section 3.2: Operating Systems Security

Section 3.2: Operating Systems Security
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (7) AUTHENTICATION.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (7) AUTHENTICATION.
MIS 5212.001 Week 13 Site:

MIS Week 13 Site:
Sanjay Goel University at Albany, School of Business NYS Center for Information Forensics and Assurance 1 Password Protection.

Sanjay Goel University at Albany, School of Business NYS Center for Information Forensics and Assurance 1 Password Protection.
Windows Security and Rootkits Mike Willard January 2007.

Windows Security and Rootkits Mike Willard January 2007.
Chapter 2 Accessing Your System and the Common Desktop Environment.

Chapter 2 Accessing Your System and the Common Desktop Environment.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Week 5-1 Week 5: System Hacking Administrator Password Guessing.

Week 5-1 Week 5: System Hacking Administrator Password Guessing.
1 MySQL Passwords Password Strength and “Cracking” Presented by Devin Egan Defcon 12 - July 31, 2004 Password Strength and “Cracking” Presented by Devin.

1 MySQL Passwords Password Strength and “Cracking” Presented by Devin Egan Defcon 12 - July 31, 2004 Password Strength and “Cracking” Presented by Devin.
What are Rainbow Tables? Passwords stored in computers are changed from their plain text form to an encrypted value. These values are called hashes, and.

What are Rainbow Tables? Passwords stored in computers are changed from their plain text form to an encrypted value. These values are called hashes, and.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Linux Security.

Linux Security.
CSE 461 INTEGRITY CHECKING AND HASHING. JOKE: TELNET.

CSE 461 INTEGRITY CHECKING AND HASHING. JOKE: TELNET.
Hacking Windows 2K, XP. Windows 2K, XP Review: NetBIOS name resolution. SMB - Shared Message Block - uses TCP port 139, and NBT - NetBIOS over TCP/IP.

Hacking Windows 2K, XP. Windows 2K, XP Review: NetBIOS name resolution. SMB - Shared Message Block - uses TCP port 139, and NBT - NetBIOS over TCP/IP.
Yvan Cartwright, Web Security Introduction Correct encryption use Guide to passwords Dictionary hacking Brute-force hacking.

Yvan Cartwright, Web Security Introduction Correct encryption use Guide to passwords Dictionary hacking Brute-force hacking.
Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.

Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.

Similar presentations

Ads by Google