RE: cracking Y2k DC Admin password

From: Bud Gordon (bud.gordon@hughes.net)
Date: Sat Sep 23 2006 - 12:07:29 EDT


Here is a great video tutorial if you have local access

www.irongeek.com/i.php?page=videos/samdump2auditor

Bud

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of juanbabi@yahoo.com
Sent: Friday, September 22, 2006 8:45 PM
To: pen-test@securityfocus.com
Subject: cracking Y2k DC Admin password

Hi,

for a pen test in doing I got control on the server and logged as the
local admin. know I need to retrive the admin's password this is the
goal of the pen test from the client side. I know an easy way to crack
the sam file with a live linux cd but I cant boot the server it needs to
be allways up. I tried to use pwdump.exe but it tells me he cand find
the local ADMIN$ shere. so it wont work.does someone knows a good way to
retrive and crack the admin's password.I an really stuck on this...

thanks very much !
Juan

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
00000008bOW
------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:59 EDT