Page 2 of 5 FirstFirst 1234 ... LastLast
Results 11 to 20 of 44

Thread: Tutorial:Cracking Cached Domain/Active Directory Passwords on Windows XP/2000/2003

  1. #11
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    OK fellas, I will document the procedure for ya and post it to this thread.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  2. #12
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    **UPDATE**

    I'm a dunce. LOL. I have a copy of PWDUMP and confused it with cachedump, however, I know why I tangled myself up. I spoke to @stake (before they were sucked up by Symantec) pushing for support for cachedump. At the time, they had this to say:

    "...adding this functionality as a new feature in the next release."

    Well I *thought* that I had asked for this when version 4 was out but when I looked back, it was after version 5 just came out, which we know is the current build.

    Sorry boot that.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  3. #13
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    That's ok. I'm glad to hear they plan to put it in the next version. Thanks for the update Horse.

  4. #14
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    Always glad to confuse a situation.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  5. #15
    Senior Member
    Join Date
    Mar 2004
    Location
    Colorado
    Posts
    421
    Nice work as usual.

    Thought I would mention to readers who don't know that password caching is enabled by default as Irongeek said but can easily be disabled or adjusted via local or group policy settings.

  6. #16
    when i do cachedump >mydump.txt and then view mydump.txt it is blank

  7. #17
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    Funny, maybe they have turned off caching on that box, it can be done by the reg edit I listed above or by a GPO.

  8. #18
    AO Veteran NeuTron's Avatar
    Join Date
    Apr 2003
    Posts
    550
    Nice job, IronGeek. Ive been looking for a good tutorial on this for some time now. Thanks for making it so convient...and thanks for linking to my tut too
    -NeuTron

  9. #19
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    Originally posted here by NeuTron
    Nice job, IronGeek. Ive been looking for a good tutorial on this for some time now. Thanks for making it so convient...and thanks for linking to my tut too
    -NeuTron
    No problem, you gave some great information. I even linked off to you cluster tutorial in one of my Flash videos.

  10. #20
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    Sorry to bring up my old thread, but I think it's justified. Cain version 2.68 (released April 22nd) added support for cracking MSCache, which means you can do it in a few clicks instead of all the steps it takes in my tutorial.

    http://www.oxid.it/cain.html

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •