Archive for the 'Password Cracking' Category

fgdump 2.1.0 and pwdump 1.7.1 Released - Dump LanMan & NTLM Hashes

Published at May 29, 2008 in Windows Hacking, Hacking Tools, Password Cracking and Applications. Comments

The major change is both tools now support 64-bit targets! Good news for us.

pwdump6 is a password hash dumper for Windows 2000 and later systems. It is capable of dumping LanMan and NTLM hashes as well as password hash histories. It is based on pwdump3e, and should be stable on XP SP2 and 2K3. If you have had LSASS crash on you using older tools, this should fix that.

fgdump is a more powerful version of pwdump6. pwdump tends to hang and such when antivirus is present, so fgdump takes care of that by shutting down and later restarting a number of AV programs. It also can dump cached credentials and protected storage items, and can be run in a multithreaded fashion very easily.

I strongly recommend using fgdump over pwdump6, especially given that fgdump uses pwdump6 under the hood! You’ll get everything pwdump6 gives you and a lot more.

fgdump now has:

  • Better 32/64 bit detection. This is not as easy as it sounds, at least not remotely! If someone has a sure-fire way for 100% reliably detecting the target OS, please let me know. In the mean time, if fgdump is unsure, it will report it and default to 32-bit.
  • The -O [32|64] flag will manually override the target OS architecture. So, for example if fgdump is reporting a host as 32-bit and you KNOW it is 64-bit, you can use -O 64 (or vice-versa, of course). Note that this flag will apply to ALL hosts you are dumping! You might want to single out any hosts you need to override.

So if you’re still using pwdump…DON’T! Use fgdump.

Get pwdump here

Get fgdump here

You can read more here and here.

Technorati Tags: , , , , ,

Password Hasher Firefox Extension

Published at February 15, 2008 in Password Cracking, Applications and Articles. Comments

Well seen as though we were talking about breaking passwords, here’s a tool for Firefox to help you manage your more secure passwords.

Better security without bursting your brain

Password Hasher is a Firefox security extension for generating site-specific strong passwords from one (or a few) master key(s).

What good security practice demands:

Strong passwords that are hard to guess.
Different passwords at each site.
Periodically changing existing passwords.

Why you probably aren’t practicing good security:

Strong passwords are difficult to remember.
Juggling a multitude of passwords is a pain.
Updating passwords compounds the memorization problem.

How Password Hasher helps:

  • Strong passwords are automatically generated.
  • The same master key produces different passwords at many sites.
  • You can quickly upgrade passwords by “bumping” the site tag.
  • You can upgrade the master key without updating all sites at once.
  • It supports different length passwords.
  • It supports special requirements, such as digit and punctuation characters.
  • All data is saved to the browser’s secure password database.

You can download Password Hasher here:

passhash-1.0.5.xpi

Or read more here.

Technorati Tags: , , , , , , , , ,

Bruter 1.0 Released - Parallel Windows Password Brute Forcing Tool

Published at January 31, 2008 in Windows Hacking, Hacking Tools, Password Cracking, Applications and Articles. Comments

Bruter 1.0 BETA 1 has been released. Bruter is a parallel login brute-forcer. This tool is intended to demonstrate the importance of choosing strong passwords. The goal of Bruter is to support a variety of services that allow remote authentication.

Bruter is a tool for the Win32 platform only.

PROTOCOL SUPPORT

It currently supports the following services:

  • FTP
  • HTTP (Basic)
  • HTTP (Form)
  • IMAP
  • MSSQL
  • MySQL
  • POP3
  • SMB-NT
  • SMTP
  • SNMP
  • SSH2
  • Telnet

DEPENDENCIES

  • OpenSSL - Win32 OpenSSL package
  • Libssh2

    You can download Bruter here:

Bruter_1.0_beta1.zip

Or read more here.

Technorati Tags: , , , , , , , , , ,

Medusa 1.4 - Parallel Password Cracker

Published at November 24, 2007 in Password Cracking, Applications and Articles. Comments

Version 1.4 of Medusa is now available for public download!

What is Medusa? Medusa is a speedy, massively parallel, modular, login brute-forcer for network services created by the geeks at Foofus.net.

The Key Features are as follows:

Thread-based parallel testing. Brute-force testing can be performed against multiple hosts, users or passwords concurrently.
Flexible user input. Target information (host/user/password) can be specified in a variety of ways. For example, each item can be either a single entry or a file containing multiple entries. Additionally, a combination file format allows the user to refine their target listing.
Modular design. Each service module exists as an independent .mod file. This means that no modifications are necessary to the core application in order to extend the supported list of services for brute-forcing.

It currently has modules for the following services:

CVS
FTP
HTTP
IMAP
MS-SQL
MySQL
NCP (NetWare)
NNTP
PcAnywhere
POP3
PostgreSQL
rexec
rlogin
rsh
SMB
SMTP (AUTH/VRFY)
SNMP
SSHv2
SVN
Telnet
VmAuthd
VNC
It also includes a basic web form module and a generic wrapper module for external scripts.

While Medusa was designed to serve the same purpose as THC-Hydra, there are several significant differences. For a brief comparison, see here.

It’s been over a year since version 1.3 was released and there has been a bunch of changes. This release includes multiple bug fixes, several new modules and additional module functionality. A somewhat detailed report is available here

You can download Medusa 1.4 here:

medusa-1.4.tar.gz

Or read more here.

Technorati Tags: , , , , ,

Inguma 0.0.5 Released for Download - Penetration Testing Toolkit

Published at November 15, 2007 in Penetration Testing, Hacking Tools, Password Cracking, Applications and Articles. Comments

Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.

With new QT interface:

If you haven’t used it for a while there’s a WHOLE lot of new stuff, it was pretty basic when we first mentioned it but it’s fairly comprehensive now with the addition of a disassembler, a fuzzer, a bunch of libraries, exploits and brute-forcers.

Most of the bugs have been fixed so it’s pretty stable.

You can download Inguma 0.0.5 here:

inguma-0.0.5.1.tar.gz

Or read more here.

Technorati Tags: , , , , , ,