August 10th, 2007, 03:16 AM
passwords in Active Directory
guys does anybody knows where Domain Controller stores passwords for Active Directory users?
I ask this question, b/c after firing ophcrack remotely against a win 2k domain controller, it yield all passwords in AD. I know AD information is stored in the %SystemRoot%\ntds\NTDS.DIT file, I wonder if that's where AD stores users password.
thanks in advance
August 10th, 2007, 04:03 AM
They are stored in the SAM file it should be located in C:\windows\system32\config\SAM I believe.
Alot of the time they are also cached and can be read easily in the registry
in HKEY_LOCAL_MACHINE\SECURITY\CACHE\NL$1 through NL$10
By cheyenne1212 in forum Miscellaneous Security Discussions
Last Post: February 1st, 2012, 02:51 PM
By ThePreacher in forum Miscellaneous Security Discussions
Last Post: December 14th, 2006, 09:37 PM
By gore in forum Operating Systems
Last Post: March 7th, 2004, 08:02 AM
By gore in forum Newbie Security Questions
Last Post: December 29th, 2003, 08:01 AM
By thehorse13 in forum Microsoft Security Discussions
Last Post: July 2nd, 2003, 11:46 PM