LMHashes

[Spydrpop]

Thank you for the quick reply. Appreciate it.

[bonarez]

hi, kind of new around here

a while ago I ran into
smbproxy
link was down right now but I'm sure you can find it somewhere
it allows you to mount smb shares with the hash from the sam file, without spending time cracking it

[whyjnot]

and nobody mentions that the only way to access your SAM file is through another OS (or by using something like LC4 which was mentioned) like knoppix std, or perhaps you could use minuteOS, but from what I read you cant access the SAM file of the OS you are running at the time, I tried and kept getting told that it was inaccessible, on a win2000pro box. I havent tried on my XPpro machine at my house.

oh yeah the password Moemoemoe1 (upper and lowercase letters, and number, and something that wouldnt \get found in a dictionary attack) took almost 5 hours to crack with LC4, with an Athlon XP 2600+ w/256MB PC2700 DDR RAM, while not running anything else (other that Trillian, and the regular OS stuff)
btw that was just a random (well not totally random) password that I threw in my admin acount for the test.

[Tiger Shark]

If you really want to make the password cracker's job difficult throw in the old <ALT>NNN keypad character somewhere in the password. I have yet to come across password crackers that go that far. Lopht etc. go as far as all printable characters and doing that the time to brute force a password > 8 characters is in the "months" timeframe. Adding the additional 127(?) non-printable characters would make the job nearly impossible for someone without practically unlimited resources.

Put 2 or 3 of them in a 10+ length password including all printable characters and you could almost email your favorite hacker the SAM and sit back and giggle.....

[Maestr0]

and nobody mentions that the only way to access your SAM file is through another OS (or by using something like LC4 which was mentioned) like knoppix std, or perhaps you could use minuteOS, but from what I read you cant access the SAM file of the OS you are running at the time

A copy of the SAM can be created easily in Windows NT using rdisk, and in Windows 2000/XP access to the hashes can be gained by accounts with debug rights using lsadump or pwdump3.

-Maestr0

[MURACU]

Another very simple thing to do is use "?" or "*" characters. A lot of password crackers use these to show the characters of the password that are not yet found. The programme will still find the password but it might confuse a script kiddie a bit.

If you have to go with a lmhash because of backward compatabilty I would suggest that the first and eight charater, at least should be either special charaters of the type "@" "&" or nonprintable as was suggested above.
For the best passwords go with the unprintable characters.

[Tiger Shark]

it might confuse a script kiddie a bit.

ROFLMAO..... I just had this picture of the skeleton of this skiddie sat in front of his computer staring at a screen that says "Password so far: mary?"