Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 25 Feb 2010 18:27:40 -0500
From: Rich Rumble <richrumble@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: Using KRB5

Might have a look at KerbCrack/KerbSniff from Ntsecurity.nu
http://ntsecurity.nu/toolbox/kerbcrack/
I wish he shared the source, I don't know if it differs from C&A's
methods but he is very responsive
when I've asked questions in the past. It'd be wonderful to be able to
import either into JtR.

On Thu, Feb 25, 2010 at 4:08 PM, Kaleb Hosie <kalebh@...essdeniedinc.com> wrote:
> I've tried doing this myself but unfortunately I haven't found a way to use the hashes I've collected in Cain and Abel. The best way I've been able to test domain passwords is by using the program called cachedump which unloads the cached passwords that Windows holds onto. The downside of this method is that you need to physically be at the users computer unlike Cain and Abel. If anyone knows of a better way in doing this, I would certainly be interested.

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.