Best Password Cracker In The World

bryanoens · Post by **bryanoens** » 11 Sep 2007, 13:54

Not sure if anyone has heard of this but it seems to be fucking amazing. It can crack Fgpyyih804423" in 160 seconds
Seems pretty sweet. Its called OPHCRACK

Check out the article here

http://www.codinghorror.com/blog/archives/000949.html

Anyone know of any better than this?

Post by **computathug** » 11 Sep 2007, 14:44

bryanoens wrote:Not sure if anyone has heard of this but it seems to be fucking amazing. It can crack Fgpyyih804423" in 160 seconds
Seems pretty sweet. Its called OPHCRACK

Check out the article here

http://www.codinghorror.com/blog/archives/000949.html

Anyone know of any better than this?

You obviously have not checked the download section

bryanoens · Post by **bryanoens** » 11 Sep 2007, 15:09

Well slap me silly and call me Susie

bryanoens · Post by **bryanoens** » 12 Sep 2007, 11:55

Ok well now that I have Ophcrack, im a little unsure on how to use it. I got the 700mb rainbow table but I cant seem to load any hashes. I tried to manually enter in hashes, didnt work. I tried getting them from the encrypted SAM and that didnt work. I read somewhere online that to get the hashes from SAM, you need to decrypt the file. But I also read it is a very long and difficult process to decrypt it. I was wondering if there is an easy way to find local hashes on my computer or if theres a way to decrypt SAM that wont take years of learning. Thanks

bubzuru · Post by **bubzuru** » 12 Sep 2007, 13:17

bryanoens wrote:Ok well now that I have Ophcrack, im a little unsure on how to use it. I got the 700mb rainbow table but I cant seem to load any hashes. I tried to manually enter in hashes, didnt work. I tried getting them from the encrypted SAM and that didnt work. I read somewhere online that to get the hashes from SAM, you need to decrypt the file. But I also read it is a very long and difficult process to decrypt it. I was wondering if there is an easy way to find local hashes on my computer or if theres a way to decrypt SAM that wont take years of learning. Thanks

1 word "cain"

hpprinter100 · Post by **hpprinter100** » 20 Oct 2007, 16:21

cain and abel is what he meant to say, thats good if u want to sniff pwds off your LAN you can use pwdump2 to dump the hashes iv read about it but i ant used it so good luck

Post by **DNR** » 20 Oct 2007, 16:27

Hey, is it me, or does everyone have Deja Vu?

DNR

Post by **computathug** » 20 Oct 2007, 17:50

no matey, its defo not you, i also remeber reading this post somewhere before XD

mo2332 · Post by **mo2332** » 20 Oct 2007, 18:59

plz close this it is to no use ty for trying but this is in dl section

ebrizzlez · Post by **ebrizzlez** » 22 Oct 2007, 22:00

First of all, do you realize how the rainbow tables work?!

A Rainbow Table is basically a lookup table that uses a method called Time-Memory-TradeOff. This method basically suggests that it would compress the memory needed to do a certain task. Basically, instead of loading a bigggggggg dictionary attack file into memory it compresses the bytes used from the plaintext to other means such as the current processed one. This small compression can result in big and faster attacks. The problem with Time-Memory-Tradeoff is it's only useful if you have a super computer. ^^ These kind of attacks are fast, but use LOTS of resources. Like said above, a Table cost you a good 700mb, while a brute force attack could generate the same amount of guesses in a logged attack, brute forcing is very slow and repeative, and these Tables basically kill brute force attacks anyday. Brute force attacks use plaintext and most load one by one each plaintext, that is resource consuming, with Rainbow Tables it just puts the results in a "Table" to save memory.

Now, bout our friend Cain. Totally script kiddie tool, but hey, what ever floats your boat. I use it only because it gets the job done. But, I have to admit, Cain's brute force attacks take beyond what Rainbow Tables do. This is because of Time-Memory-Tradeoff which can process more then twice the speed of a normal brute force.

If you have enough resources, use the Tables! There are a bunch out there, Rainbow Crack, OPHCRACK, and there are even other types of crackers better then Cain, Ritz Crackers(jk), John the Ripper I heard was good(never tried it though. Think its good for LM hashes..)

bubzuru · Post by **bubzuru** » 23 Oct 2007, 01:12

LA hashes ?? do you mean LM

ebrizzlez · Post by **ebrizzlez** » 23 Oct 2007, 04:10

bubzuru wrote:LA hashes ?? do you mean LM
Well.. it does crack LA hashes, but your sorta right, LM is cracked easier.

Why you ask? Because you want that good ole' Sammy file. xD jk.

Actually, LA hashes come in more varieties then just one hash, rather LM is just one main hash. LA has sub-hashes based on the alogirthm provided in LA, this may sound confusing but its not.

Basically someone took the LA hash and said: "I am gonna make this better". So these types of people go out, and basically go crazy. Now we got the LA2 hash, LA2K hash and other varities, all not so common now in these days.

[::EDIT::]

Ok well now that I have Ophcrack, im a little unsure on how to use it. I got the 700mb rainbow table but I cant seem to load any hashes. I tried to manually enter in hashes, didnt work. I tried getting them from the encrypted SAM and that didnt work. I read somewhere online that to get the hashes from SAM, you need to decrypt the file. But I also read it is a very long and difficult process to decrypt it. I was wondering if there is an easy way to find local hashes on my computer or if theres a way to decrypt SAM that wont take years of learning. Thanks

No offense, but maybe you dont understand.

Bubzuru recommended Cain, the only problem is.... Cain is a bit slow, but he gets the job done.

ermmm... I dont see why you would need to "decrypt" the SAM file if you are on that current box, unless your like me and lost the password, or your doing it for your own education. Either way, it may take a while.

There is an entire Linux live cd distro made for cracking the SAM. In fact, once it boots in, it automatically starts to crack the SAM.

Btw, some tables wont load into memory so they wont work because they are such huge files!

John the Ripper is a good choice, or you can check out http://www.insecure.org for more password crackers.

ghostbrain · Post by **ghostbrain** » 30 Nov 2007, 05:38

Yahh.....you are absolutely right......probably John The Ripper Is the best choice...

But someone can suggest me.. how do i expose a FTP userid and password remotely.

Thanks..........

Post by **ayu** » 30 Nov 2007, 06:03

ghostbrain wrote:Yahh.....you are absolutely right......probably John The Ripper Is the best choice...

But someone can suggest me.. how do i expose a FTP userid and password remotely.

Thanks..........

well,first of all we don't support malicious purposes around here.

Second of all, it would depend on the FTP service that is running on the server. Because there could be a vulnerability of some sort that could help you with what you want to do.

Third and last thing is that bruteforcing a remote server is never the answer. It can takes days-weeks yeah...even months, to crack a password depending on how strong the password is and how fast/secure the server is. Also it would light the server log like me in a comic book store.

suck-o.com

Best Password Cracker In The World

Best Password Cracker In The World

Re: Best Password Cracker In The World

since I am an Admin, I can flame