 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 196
 Members: 0
 Total: 196
|
|
|
|
|
|
Full disclosure |
|
Google Firebase hosting suspension / "malware distribution"bypass
CyberDanube Security Research 20251014-0 | Multiple Vulnerabilities in Phoenix Contact QUINT4 UPS
apis.google.com - Insecure redirect via __lu parameter(exploited in the wild)
Urgent Security Vulnerabilities Discovered in Mercku Routers Model M6a
Re: Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS)
Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS)
[SBA-ADV-20250730-01] CVE-2025-39664: Checkmk Path Traversal
[SBA-ADV-20250724-01] CVE-2025-32919: Checkmk Agent Privilege Escalation via Insecure Temporary Files
CVE-2025-59397 - Open Web Analytics SQL Injection
Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Re: Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Re: Defense in depth -- the Microsoft way (part 93): SRP/SAFERwhitelisting goes black on Windows 11
Re: [FD]: "Glass Cage" – Zero-Click iMessage ? Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)
Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Samtools v1.22.1 Uncontrolled Memory Allocation from Large BED Intervals Causes Denial-of-Service in Samtools/HTSlib
|
|
|
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
Really? |
|
 Posted: Thu May 01, 2008 8:49 pm |
 |
|
| willvic |
| Regular user |
 |
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
 |
|
 |
|
123Gb?
I told winrtgen to do 7-14 characters, lower alpha-numeric, ntlm...
and it says it will do it in 600mb
is that incorrect? |
|
|
|
|
|
Re: Really? |
|
| Posted: Thu May 01, 2008 8:53 pm |
|
|
| waraxe |
| Site admin |
 |
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| willvic wrote: | 123Gb?
I told winrtgen to do 7-14 characters, lower alpha-numeric, ntlm...
and it says it will do it in 600mb
is that incorrect? |
And did you look at "Success probability"?
Forget "7-14" ! Best you can do is "loweraplpha numeric 1-9".
Even 10 chars loweralpha rainbow tables are HUGE pile of data! |
|
Last edited by waraxe on Thu May 01, 2008 8:56 pm; edited 2 times in total |
|
|
|
|
no... |
|
| Posted: Thu May 01, 2008 8:55 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
not forced to change password.
Just looks like it got changed... the 2nd hash did anyway...
hash is now
pandenclv:"":"":AAD3B435B51404EEAAD3B435B51404EE:39C8871C817D9FE0046BD54E566ACC15 |
|
|
|
|
|
ugh |
|
| Posted: Thu May 01, 2008 8:57 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
success probability 0
well that sucks... |
|
|
|
|
|
Re: no... |
|
| Posted: Thu May 01, 2008 8:58 pm |
|
|
| waraxe |
| Site admin |
|
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| willvic wrote: | not forced to change password.
Just looks like it got changed... the 2nd hash did anyway...
hash is now
pandenclv:"":"":AAD3B435B51404EEAAD3B435B51404EE:39C8871C817D9FE0046BD54E566ACC15 |
So indeed, password was changed. And you have now two NTLM hashes to try. But if there is now somewhere taht same password in reversible form, then it's located somewhere else. Maybe in registry. |
|
|
|
|
|
in registry? |
|
| Posted: Thu May 01, 2008 9:02 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
registry of the pc?
hmmm
could try that... not sure where it would have stored it. |
|
|
|
|
|
LM Hash? |
|
| Posted: Fri May 02, 2008 1:29 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
I'm not sure why it's empty.. other than the pw could be longer than 15 characters??
The pc registry for logon is not set to not keep LM hashes..
Domain policy also does not say "no lm hash'....
Is there a way to require an lm hash be stored? |
|
|
|
|
|
Maybe a last question... |
|
| Posted: Fri May 02, 2008 4:34 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
I've been running LM alpha tables just against a ton of accounts, with cain.. and it works great, and when it gets 1/2 the pw it shows that 1/2 of it.... Got me about 4000 pw's off the bat.. in just about 15 minutes.
If I get ntlm tables... and run it against the pw in question... will it do the same, revealing part of it, if it can only get part of it?
That may be all I'd need. |
|
|
|
|
| Posted: Fri May 02, 2008 7:11 pm |
|
|
| waraxe |
| Site admin |
|
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| NT hash works differently and you can't reveal half of password as in case of LM hash. So if original password is long enough (>9 chars) and not in worldlists, then you have in trouble with cracking ... |
|
|
|
|
|
ok thanks... |
|
| Posted: Fri May 02, 2008 7:18 pm |
|
|
| willvic |
| Regular user |
|
|
| Joined: Apr 04, 2008 |
| Posts: 14 |
|
|
|
|
|
|
|
| obviously not as easy a crack as I hoped it might be.. |
|
|
|
|
www.waraxe.us Forum Index -> All other hashes
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 2 of 2
Goto page Previous1, 2
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
