|
CacheDump, licensed under the GPL, demonstrates how to recover cache entry information: username and MSCASH. Administrators or security consultants are welcomed to use this program; malicious users can't do anything with it as long as they do not have Administrator privileges. CacheDump does not rely on the dll-injection method used in pwdump or lsadump2; it creates a NT service on the fly in order to read the static LSA key from LSASS.EXE's process memory, and deciphers the cache entries to exp...
Site: http://www.off-by-one.net/
Hits: 21917
|
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols.
Site: http://www.oxid.it/cain.html
Hits: 6479
|
|
Credential Manager is a new SSO solution that Microsoft offers in Windows Server 2003 and Windows XP to provide a secured store for credential information. It allows you to input user name and passwords for various network resources and applications once, and then have the system automatically supply that information for subsequent visits to those resources without your intervention.One example is the command:net use * \\computer_name\share_name /user:user_name password /savecredCredential Manag...
Site: http://www.oxid.it/creddump.html
Hits: 4465
|
A Tool For Mass Password Auditing of Windows Systems
Site: http://www.foofus.net/~fizzgig/fgdump/
Hits: 5744
|
|
A very fast network logon cracker which support many different services.Number one of the biggest security holes are passwords, as every password security study shows. Hydra is a parallized login cracker which supports numerous protocols to attack. New modules are easy to add, beside that, it is flexible and very fast.Currently this tool supports: TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, SMB, SMBNT, MS-SQL, MYSQL, REXEC, RSH, RLOGIN, CVS, SNMP, SMTP-AUTH, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, ...
Site: http://freeworld.thc.org/thc-hydra/
Hits: 43719
Comments: 6
|
John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches.
Site: http://www.openwall.com/john/
Hits: 9299
Comments: 1
|
