[Pc_Support] Windows 2k passwords -- on-line local or IPC session
v. off-line CD
Bryan J. Smith
thebs413 at gmail.com
Mon Sep 18 16:48:49 EDT 2006
The Manucinator wrote:
> It's pretty simple with tools like Cain, DumpSec, etc.
Indeed. All you need is either a local account or a null session
(IPC) to the system in question and you can attempt to crack the
database. NTLMv2 still presents the passwords in a way that makes
them easy to track on-line.
If you can't even login to the box locally or via an IPC null session,
then the off-line Linux CD does the job in most cases. There might be
BartPE-based CD/USB options as well (I've never tried any).
More information about the Pc_support
mailing list