Penetration Testing mailing list archives
Re: pwdump 2 & 3
From: okrehel () loews com
Date: Mon, 3 Jan 2005 12:12:40 -0500
If user runs any ms service under his domain credentials, lsadump2 will do it. (dumps LSA secrets) You probably want cashed domain credentials from pc, and pwdump only dumps local SAM database. Pwdump3 dumps remotely domain login credentials, but I think you need to be at least local admin on domain controller, or domain admin. Cain and Abel will sniff it. Ondrej Geoffroy Raimbault <graimbault@lynx- To technologies.com> "pen-test () securityfocus com" <pen-test () securityfocus com> 01/03/2005 04:13 cc AM Subject Re: pwdump 2 & 3 Take a look at this presentation from Jesper M. Johansson "Windows Passwords: Everything You Need To Know" http://202.181.238.2/hk/teched2004/ppt/Day_2_Rm402/WIN495(1500-1615).ppt Some slides are about the logon credentials hashs. Geoffroy Guillaume Lavoix wrote:
Hello, Does anyone knows if it is posible with pwdump to get the information About a logged on user. For instance, If I log on my computer, I use a domain logon, and when I execute pwdump I only see local user.... Any idea ? Thanks for your help, Sincerely, Guillaume
-- Geoffroy Raimbault Consultant en Sécurité des Systèmes d'Information Lynx Technologies 28 rue Vignon 75009 Paris Tel: 01 43 12 99 10 http://www.lynx-technologies.com
Current thread:
- Re: pwdump 2 & 3 Geoffroy Raimbault (Jan 03)
- Re: pwdump 2 & 3 okrehel (Jan 03)
- <Possible follow-ups>
- Re: pwdump 2 & 3 Nicolas RUFF (listes) (Jan 05)
- Re: pwdump 2 & 3 miguel . dilaj (Jan 06)
- Re: pwdump 2 & 3 Nicolas RUFF (lists) (Jan 31)
- Re: pwdump 2 & 3 Arnaud Pilon (Jan 11)