Electronic Books

*Note: Many of you may ask, ???Why should I concern myself by going to the trouble
of obtaining the password hashes just to break the hashes with another
program when I already have an Administrator account on the target???? Good
question. Several reasons are as follows: any account password can be
changed at any time; the more passwords an attacker has, the better for him
or her; some accounts on this target may have Administrative access on
another target; and the list goes on. Just because an attacker has one Administrative
account is not necessarily a reason for the attacker to stop looking
for others.
Brute Force
313
Lab 55: Crack Password Hashes
Crack and Capture Password Hashes: LC5
Prerequisites: None
Countermeasures: Strong Administrator passwords, strong password
policy
Description: L0phtcrack version 5 (LC5) is a password-auditing tool that
allows for the capturing of Windows passwords and or the conversion
of captured Windows password hashes into the correct password. This
is done by sending the captured hash through an algorithm until the
new hash exactly matches the original one. This identifies the password
that computes into the hash.
Procedure: Install the L0phtcrack application, start, select the parameters,
and execute.
Open LC5. The application will start the LC5 Wizard. Click Next.
314
Practical Hacking Techniques and Countermeasures
The next area of the wizard requests a location of the encrypted passwords.


Pages:
109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133