Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott
knoppix probably.
On Jan 24, 2008 9:10 AM, Scott Ehrlich scott@mit.edu wrote:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Scott Ehrlich wrote:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
This is definitely OffTopic here on this list, please take it elsewhere.
--On Thursday, January 24, 2008 2:23 PM +0000 Karanbir Singh mail-lists@karan.org wrote:
This is definitely OffTopic here on this list, please take it elsewhere.
Suggested elsewhere: Samba newsgroup and lists.
Scott Ehrlich wrote:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
You will need to brute force attack the passwords, using a utility that can read the SAM registry on disk, encrypt dictionary words, common names, common passwords as well as generate passwords and compare.
I don't know of such a utility, but I have a feeling that you might have better luck finding that on Windows. If that is the case then you could create a WinXP USB drive to boot from.
I find it easier to steal passwords through key logging, phishing (web or wireless) or social engineering then by brute force (as a security admin I test out our corporate environment routinely).
-Ross
______________________________________________________________________ This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify the sender and permanently delete the original and any copy or printout thereof.
On Jan 24, 2008 9:10 AM, Scott Ehrlich scott@mit.edu wrote:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott
Yes, very OT.
Brian Mathis wrote:
On Jan 24, 2008 9:10 AM, Scott Ehrlich scott@mit.edu wrote:
Granted this is not a UNIX system, but in case there is a
UNIX tool to
accomplish the goal...
I am looking for a bootable CD/DVD (or application to be
placed on a CD/DVD to
be made bootable) that can let me mount a Windows XP
drive/partition (SP1 or
SP2), and force-crack the admin password (even if admin
account name has been
changed, but I know what it has been changed to). The
application cannot write
to the hard drive - only mount it read-only, read the
password file into ram,
and show the cracked password.
I know I can use the pnordahl utility to try and
force-change the password, but
I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott
Yes, very OT.
I forgot that one... nice.
Always set Windows to NOT store the LM hashes of the passwords and pick strong passwords!
-Ross
______________________________________________________________________ This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify the sender and permanently delete the original and any copy or printout thereof.
on 1/24/2008 6:10 AM Scott Ehrlich spake the following:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott
XP passwords are stored as hashes. You need to brute-force guess and compare the created hashes to the stored ones. If the user has the same password stored in programs like outlook express, that is much easier.
But forensically, changing the password to gain access is usually sufficient. Knowing the original password is not that valuable in a legal scenario, as you will need a warrant anyway to access anything else that might be protected by that password.
If it is that critical, find a certified PC forensics specialist. One misstep on your part will make the evidence worthless in court.
I have used a free password cracking service that was found in Google...
It is a free service if you want to wait the 72 hours for the password, if you need it ASAP, they do that for a fee.. ($29.95)
You create a boot disk that retrieves the info from the machine you are trying to recover the password from, then you upload to the http://www.loginrecovery.com site and wait...
There is also a neat trick that I found on the web again by searching, you will need the install CD and will start a install in the machine, at one point there is a Window where you hit Alt F10 if my memory is correct and it takes you into the machines user utility where you can reset and change passwords as you wish... Sorry did it about a year ago and don't remember the specifics, but it too was found in a google search...
john plemons
Scott Silva wrote:
on 1/24/2008 6:10 AM Scott Ehrlich spake the following:
Granted this is not a UNIX system, but in case there is a UNIX tool to accomplish the goal...
I am looking for a bootable CD/DVD (or application to be placed on a CD/DVD to be made bootable) that can let me mount a Windows XP drive/partition (SP1 or SP2), and force-crack the admin password (even if admin account name has been changed, but I know what it has been changed to). The application cannot write to the hard drive - only mount it read-only, read the password file into ram, and show the cracked password.
I know I can use the pnordahl utility to try and force-change the password, but I actually want to crack it.
The utility should be free.
This is a legal request.
Thanks for leads.
Scott
XP passwords are stored as hashes. You need to brute-force guess and compare the created hashes to the stored ones. If the user has the same password stored in programs like outlook express, that is much easier.
But forensically, changing the password to gain access is usually sufficient. Knowing the original password is not that valuable in a legal scenario, as you will need a warrant anyway to access anything else that might be protected by that password.
If it is that critical, find a certified PC forensics specialist. One misstep on your part will make the evidence worthless in court.
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.516 / Virus Database: 269.19.10/1240 - Release Date: 23/01/2008 5:47 PM
John Plemons wrote:
I have used a free password cracking service that was found in Google...
this conversation is well and truly beyond being OffTopic.
Stop posting to this thread now
-
Brian Mathis -
Ed Donahue -
John Plemons -
Karanbir Singh -
Kenneth Porter -
Ross S. W. Walker -
Scott Ehrlich -
Scott Silva