jht129

Quick Question about passwords on a domain

11 posts in this topic

How do you get the passwords of all users stored on a single domain? I doubt packet sniffing will work, and I already tried google, thanks.

0

Share this post


Link to post
Share on other sites

you evolve from 0226 to 1337. :blink:

0

Share this post


Link to post
Share on other sites

I know there's information on this forum itself about this so I'm not sure how much you really searched.

0

Share this post


Link to post
Share on other sites

If I recall correctly, it goes something like this.

1. Break into the room where the domain controller is. <- hard part

2. Boot up (insert linux livecd of your choice here) and grab the SAM file <- easy part

3. Take it home and crack it <- really fucking time consuming part

0

Share this post


Link to post
Share on other sites

If I recall correctly, it goes something like this.

1. Break into the room where the domain controller is. <- hard part

2. Boot up (insert linux livecd of your choice here) and grab the SAM file <- easy part

3. Take it home and crack it <- really fucking time consuming part

If you reboot the domain controller then wont they be able to work out that something is up?

0

Share this post


Link to post
Share on other sites

If I recall correctly, it goes something like this.

1. Break into the room where the domain controller is. <- hard part

2. Boot up (insert linux livecd of your choice here) and grab the SAM file <- easy part

3. Take it home and crack it <- really fucking time consuming part

If you reboot the domain controller then wont they be able to work out that something is up?

That's why you gotta do it quick. People will still be able to login as well, as long as they've logged into the machine they are logging into before. The thing you have to be careful about is, a few places will us a DC as a DNS server or File Server, or some some other service that many people use and will notice that something is up as soon as it goes down.

0

Share this post


Link to post
Share on other sites

If I recall correctly, it goes something like this.

1. Break into the room where the domain controller is. <- hard part

2. Boot up (insert linux livecd of your choice here) and grab the SAM file <- easy part

3. Take it home and crack it <- really fucking time consuming part

That is when it sucks to find out that either:

A. Your cd is scratched.

B. You just found out that the domain controller doesn't have a cd tray.

C. You can't boot from a cd.

or

D. You need to password to reboot.

:P

0

Share this post


Link to post
Share on other sites

Lol funny replies guys... no what i really intended to do was run netpass.exe from my flashdrive, but when I do that on one of the computers on the network, all entries come up blank.... its sorta a problem

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now