Options

Any free tools better than Ophcrack?

slyeslye Member Posts: 19 ■□□□□□□□□□
in Off-Topic
For password recovery that is. I've used the free tables to no success so far and was hoping someone here might know of another tool that would do the trick. The host uses win7.
· Share on FacebookShare on Twitter
«1

Comments

  • Options
    shaqazoolushaqazoolu Member Posts: 259 ■■■■□□□□□□
    Ophcrack isn't the problem. Your tables are.
    :study:
    · Share on FacebookShare on Twitter
  • Options
    docricedocrice Member Posts: 1,706 ■■■■■■■■■■
    Lots of free tables if you know where to look. The ones that come bundled with the tools aren't always very large.
    Hopefully-useful stuff I've written: http://kimiushida.com/bitsandpieces/articles/
    · Share on FacebookShare on Twitter
  • Options
    it_consultantit_consultant Member Posts: 1,903
    This is the best one I use:

    Offline NT Password & Registry Editor

    It isn't a password cracker as much as it gives you the ability to blank out an account password, which is just as useful. The download is 3 megs, which is nice.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    it_consultant wrote: »
    It isn't a password cracker as much as it gives you the ability to blank out an account password, which is just as useful. The download is 3 megs, which is nice.

    Not always just as useful. Blanking a password can corrupt files, especially encrypted ones. Plus, since people often recycle passwords, cracking a windows password might also get you an email password.
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    it_consultantit_consultant Member Posts: 1,903
    I have used that tool countless times and have yet to corrupt a file. Of course, this is only good for Windows local passwords so if you use linux with SALT then this thing wont do it for you.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    Just stumbled across this.

    5 ways to crack or reset a forgotten Windows XP administrator password
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    gorebrushgorebrush Member Posts: 2,743 ■■■■■■■□□□
    Konboot gets me into Windows machines in mere minutes.
    · Share on FacebookShare on Twitter
  • Options
    docricedocrice Member Posts: 1,706 ■■■■■■■■■■
    I guess one question I should pose is this: is this exercise to actually recover a password or simply reset a password to get into a machine? Resetting it may cause problems in accessing EFS-encrypted files if the DRA information is lost as well.
    Hopefully-useful stuff I've written: http://kimiushida.com/bitsandpieces/articles/
    · Share on FacebookShare on Twitter
  • Options
    slyeslye Member Posts: 19 ■□□□□□□□□□
    docrice wrote: »
    I guess one question I should pose is this: is this exercise to actually recover a password or simply reset a password to get into a machine? Resetting it may cause problems in accessing EFS-encrypted files if the DRA information is lost as well.

    Thanks guys, I'll give kon-boot a try. I'd like to recover the password, but since nothing is encrypted resetting it may be another option. As far as tables go, I'd need a table that is 15 charcters upper and lower case, numeric, special case and ALT + #. I'm thinking ophcrack is not the answer in this case.
    · Share on FacebookShare on Twitter
  • Options
    eansdadeansdad Member Posts: 775 ■■■■□□□□□□
    Have you tried using a rainbow table generator to generate the table you would need or are you using a generic table?
    · Share on FacebookShare on Twitter
  • Options
    slyeslye Member Posts: 19 ■□□□□□□□□□
    eansdad wrote: »
    Have you tried using a rainbow table generator to generate the table you would need or are you using a generic table?
    No, what do you recommend for a primer on rainbow tables? I like to learn more about them.

    Gorebrush- I visited the kon-boot website and followed the instructions but everytime I've used unetbootin to put the iso/img on a usb, then boot from the USB the system tells me that bootmgr is missing. I thought booting from the usb would be the same as booting a linux image...

    Burn ISO Image to USB Flash Pen Drive (Kon-Boot to USB) | Raymond.CC Blog
    · Share on FacebookShare on Twitter
  • Options
    jahsouljahsoul Member Posts: 453
    slye wrote: »
    No, what do you recommend for a primer on rainbow tables? I like to learn more about them.

    Gorebrush- I visited the kon-boot website and followed the instructions but everytime I've used unetbootin to put the iso/img on a usb, then boot from the USB the system tells me that bootmgr is missing. I thought booting from the usb would be the same as booting a linux image...

    Burn ISO Image to USB Flash Pen Drive (Kon-Boot to USB) | Raymond.CC Blog
    What I did was download Hiren's (which has Kon-Boot) and then used multiboot iso. But I had to change the menu.lst
    *Example*
    title Hiren's Boot CD 11.1
    find --set-root /Hiren's.BootCD.11.1.iso
    map /Hiren's.BootCD.11.1.iso (hd32)
    map --hook
    chainloader (hd32)
    boot

    I know it's not unetbootin but it's gives me options if I want to run an OS, Acronis, or Hiren's...
    Reading: What ever is on my desk that day :study:
    · Share on FacebookShare on Twitter
  • Options
    themagiconethemagicone Member Posts: 674
    slye wrote: »
    No, what do you recommend for a primer on rainbow tables? I like to learn more about them.

    Gorebrush- I visited the kon-boot website and followed the instructions but everytime I've used unetbootin to put the iso/img on a usb, then boot from the USB the system tells me that bootmgr is missing. I thought booting from the usb would be the same as booting a linux image...

    Burn ISO Image to USB Flash Pen Drive (Kon-Boot to USB) | Raymond.CC Blog

    You need to make the usb disk bootable... One sec...

    How To make Bootable USB
    Courses Completed at WGU: JIT2, LYT2, TFT2, SJT2, BFC2, TGT2, FXT2
    Courses Required For Me To Graduate WGU in MS: IT Network Managment: MCT2, LZT2, MBT1, MDT2, MNT2
    CU Done this term: 16 Total CU Done: 19
    Currently working on: Nothing Graduation Goal: 5/2013
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    Where do you guys suggest that I look to find more tables? Free/cheap is always a plus.
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    slye wrote: »
    No, what do you recommend for a primer on rainbow tables? I like to learn more about them.

    A rainbow table is basically a list of passwords that have already been encrypted. So rather than spending time going through a list of passwords, encrypting them, and then comparing, you can save a ton of time just by comparing the results. Once a match is found, you know what the password is.

    Of course it is all more complicated than that. Try this on for size. Rainbow table - Wikipedia, the free encyclopedia
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    HeeroHeero Member Posts: 486
    Devilsbane wrote: »
    A rainbow table is basically a list of passwords that have already been encrypted. So rather than spending time going through a list of passwords, encrypting them, and then comparing, you can save a ton of time just by comparing the results. Once a match is found, you know what the password is.

    Of course it is all more complicated than that. Try this on for size. Rainbow table - Wikipedia, the free encyclopedia

    I used to think that, but then you realize it is way more complicated than that. Storing password-->hash combinations is simple, rainbow tables do it in a very complicated way that improved efficiency, but generally there is a size/time to crack trade off when it comes to the actual table.
    · Share on FacebookShare on Twitter
  • Options
    eansdadeansdad Member Posts: 775 ■■■■□□□□□□
    Devilsbane wrote: »
    Where do you guys suggest that I look to find more tables? Free/cheap is always a plus.

    Winrtgen from oxit.it isn't bad for free. Most AVs will pick it up so you'll need to use a VM to use it.
    · Share on FacebookShare on Twitter
  • Options
    shaqazoolushaqazoolu Member Posts: 259 ■■■■□□□□□□
    I've had pretty good success with Ophcrack with the 8GB tables. I don't know what the character limitations on it are but I've cracked some pretty ugly, random looking passwords with it. That's why I say I don't think Ophcrack is the problem.

    What you could do is just get a couple of GTX295's in SLI and straight brute force them with a CUDA cracking tool...if you had time and money to burn of course. icon_thumright.gif I'm pretty sure some of the CUDA tools are also capable of doing salted SHA-1 hashes too.
    :study:
    · Share on FacebookShare on Twitter
  • Options
    alan2308alan2308 Member Posts: 1,854 ■■■■■■■■□□
    Devilsbane wrote: »
    Where do you guys suggest that I look to find more tables? Free/cheap is always a plus.

    Free Rainbow Tables » Distributed Rainbow Table Generation » LM, NTLM, MD5, SHA1, HALFLMCHALL, MSCACHE

    It's a distributed computing project (like SETI or Folding@Home), so the bundle is always growing. Right now they have nearly 2TB available. Buy a loaded hard drive or grab a torrent off of the site.
    Facebook LinkedIn Twitter
    · Share on FacebookShare on Twitter
  • Options
    slyeslye Member Posts: 19 ■□□□□□□□□□
    gorebrush wrote: »
    Konboot gets me into Windows machines in mere minutes.
    Thanks! I got it to blank the admin password and get in and start installing updates.
    · Share on FacebookShare on Twitter
  • Options
    gorebrushgorebrush Member Posts: 2,743 ■■■■■■■□□□
    slye wrote: »
    Thanks! I got it to blank the admin password and get in and start installing updates.

    That's the way :)
    · Share on FacebookShare on Twitter
  • Options
    SephStormSephStorm Member Posts: 1,731 ■■■■■■■□□□
    shaqazoolu wrote: »
    What you could do is just get a couple of GTX295's in SLI and straight brute force them with a CUDA cracking tool...if you had time and money to burn of course. icon_thumright.gif I'm pretty sure some of the CUDA tools are also capable of doing salted SHA-1 hashes too.

    ^ this I would like to see a tutorial on, and
    Winrtgen from oxit.it isn't bad for free. Most AVs will pick it up so you'll need to use a VM to use it.

    Why would anti virus pick up a hash generator?
    http://www.ethicalhacker.net/forums/index.php - sectestanalysis.blogspot.com
    · Share on FacebookShare on Twitter
  • Options
    myedjo24myedjo24 Member Posts: 92 ■■□□□□□□□□
    I used to like to use ERD Commander 2005 for password recovery. I don't know what happened to them, but I think it's part of Microsoft now (or always has been?). IDK. Haven't really needed something like ERD in awhile.
    · Share on FacebookShare on Twitter
  • Options
    gosh1976gosh1976 Member Posts: 441
    Hiren's BootCD worked a charm on a windows 7 box for me just yesterday. I just blanked the password to get in.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    gosh1976 wrote: »
    Hiren's BootCD worked a charm on a windows 7 box for me just yesterday. I just blanked the password to get in.

    What version do you have? I think I have version 9.8, and I booted up into mini xp mode a couple months ago intending to run a chkdsk on my C: drive, but it wasn't able to see any of my drives.

    Also, which tool did you use to do that?
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    SephStorm wrote: »
    Why would anti virus pick up a hash generator?

    Because the antivirus program is attempting to protect your PC. There are very few people who would have this on their machine. For the mass majority of people, having a password cracking tool on their computer means that someone is attacking them.

    Most will pick up johntheripper, netcat, and other tools with legitimet uses.
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    gosh1976gosh1976 Member Posts: 441
    Devilsbane wrote: »
    What version do you have? I think I have version 9.8, and I booted up into mini xp mode a couple months ago intending to run a chkdsk on my C: drive, but it wasn't able to see any of my drives.

    Also, which tool did you use to do that?

    I have version 10.6. I don't remember what the name of the tool was but it was one of the first few in the menu if I remember correctly.
    · Share on FacebookShare on Twitter
  • Options
    DevilsbaneDevilsbane Member Posts: 4,214 ■■■■■■■■□□
    gosh1976 wrote: »
    I have version 10.6. I don't remember what the name of the tool was but it was one of the first few in the menu if I remember correctly.

    Probably time to update my tools then, I've had that disk for a year and a half or so. I think Windows 7 uses a new version of NTFS. I guess they support it now, awesome.
    Decide what to be and go be it.
    · Share on FacebookShare on Twitter
  • Options
    it_consultantit_consultant Member Posts: 1,903
    My original link supports Windows 7.

    http://pogostick.net/~pnh/ntpasswd/
    · Share on FacebookShare on Twitter
  • Options
    Mojo_666Mojo_666 Member Posts: 438
    it_consultant wrote: »
    I have used that tool countless times and have yet to corrupt a file. Of course, this is only good for Windows local passwords so if you use linux with SALT then this thing wont do it for you.

    +1

    Been using this for many years and never had a corrupt file.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.