Why Crack When You Can Pass the Hash?
Page 1 of 1
Why Crack When You Can Pass the Hash?
SANS Institute InfoSec Reading Room
A weakness exists in the design of Windows unsalted password hashing mechanism.
The static nature of this password hash provides the means for someone to masquerade as another user if the victim's hash can be obtained. While the concept of passing a Windows password hash has been around for some time, the release of publicly available tools has taken the first major step towards harnessing the true power of this attack.Although such tools have not yet targeted Microsoft s implementation of Kerberos,all organi...
Download PDF
A weakness exists in the design of Windows unsalted password hashing mechanism.
The static nature of this password hash provides the means for someone to masquerade as another user if the victim's hash can be obtained. While the concept of passing a Windows password hash has been around for some time, the release of publicly available tools has taken the first major step towards harnessing the true power of this attack.Although such tools have not yet targeted Microsoft s implementation of Kerberos,all organi...
Download PDF
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics
» Making a Md5 Hash For Securing Passwords In Database
» Automated detection of CSRF-worthy HTML forms through 4-pass reverse-Diff analysis
» Crack Windows XP And Vista Passwords In a few Seconds
» Automated detection of CSRF-worthy HTML forms through 4-pass reverse-Diff analysis
» Crack Windows XP And Vista Passwords In a few Seconds
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum