> I'm not sure of JtR will do both Lan Manager hashes and NT > hashes, like LC3. > It does Lan Manager hashes, though. I have not seen JtR unpatched[1] come up with 'NT passwords' yet (the case-sensitive kind), but I use vanilla JtR in conjunction with Cain[2] - have JtR crack the LanMan hash, spit out all-uppercase password. Start up Cain, import the pwdump-formatted file that JtR works on into the SMB tab (kind of intuitive, eh?), right-click the account in question, and choose 'test password'. A dialog box appears, allowing you to enter the case-insensitive password you just received from JtR. The NTLM equivalent, be it uppercase, lowercase or mixed case, will then appear to the right of the LanMan password. I reckon this is kind of useless when you don't get any lanman hashes flying over the wire, or can't pwdump them for any reason, but it's neat to get the case of a given password real fast, without having to worry about lockout or any such nastiness. thomas ------ [1] NTLM patch available @ http://labs.defcom.com/releases/john-ntlm/john-ntlm-patch-v01.tar.gz [2] Cain available @ http://www.oxid.it ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Tue Sep 18 2001 - 14:40:59 PDT