HellBound Hackers
Join us at IRC!
The measure of a mans life is not how well he dies, but how well he lives.
Thursday, May 24, 2012
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
HellBoundHackers Additional:
Shop
Learn
Communicate
Submit
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Interact
Other
HellBoundHackers Executive:
HellBoundHackers Leisure:
Members Online
Total Online: 24
Web Spiders: 14
Guests Online: 24
Members Online: 0

Registered Members: 70188
Newest Member: nuk3d
Latest Articles
View Thread

HellBound Hackers | Computer General | Hacking in general
Author

Help Cracking NTLM Hash
Infam0us
Member



Posts: 153
Location: 0x080484c6
Joined: 06.09.07
Rank: HBH Guru
Posted on 13-06-08 00:45
I have an administrators ntlm hash from xp. When I try to crack it in cain and abel I get this when starting to brute force it.
Plaintext of F4CA7D356EE... is 0307
Attack Stopped!
1 of 2 Hashes Cracked


The hash it cracked is the "NT hash" so now I'm stuck with a password that looks exaclty like this "???????0307"

How do I attack the rest of the password? Is the rest of that password an LM hash (thats my best guess)? It is exactly 7 characters missing.

Or is it an ntlm hash? I have read this stuff in school and on wikipedia and thought i understood it.

Any help on what type of hash the rest of the password is and what would be the best way to crack it?

"Never memorize what you can look up in books." -Albert Einstein




[img]javasc ript:alert(document.cookie);[/img]
Author

RE: Help Cracking NTLM Hash
SySTeM
-=[TheOutlaw]=-

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank: The Overlord
Posted on 13-06-08 01:03
Try milw0rm's cracker, I think they do lm hashes.
http://www.elites0ft.com/
Author

RE: Help Cracking NTLM Hash
psidude
Member

Posts: 2
Location:
Joined: 01.09.06
Rank: Newbie
Posted on 13-06-08 02:45
I like freerainbowtables.com ... it is a distributed computing site that generates rainbow tables... you don't have to use their generating software to use their tables... you don't have to download the tables either, just submit the hash on their site and give it 10 mins or so... and check the pass.
Author

RE: Help Cracking NTLM Hash
Infam0us
Member



Posts: 153
Location: 0x080484c6
Joined: 06.09.07
Rank: HBH Guru
Posted on 13-06-08 04:20
Thanks for the help everyone.

System_meltdown I went to milw0rm and the LM hash is supposed to be 16bytes these hashes are double that. So I guess its not an LM hash like i thought it was.

Here is the NT hash, F4CA7D356EE41CD859A26C49A31B2F9D
and this one is labeled in cain and abel as LM hash 0259752D2C3B4F13F9496BE7EBA6D251

I'll try rainbow tables next and if that doesn't work I'll run them through jtr and see if I have better luck.



"Never memorize what you can look up in books." -Albert Einstein




[img]javasc ript:alert(document.cookie);[/img]
Author

RE: Help Cracking NTLM Hash
mastergamer
Member



Posts: 432
Location:
Joined: 07.02.06
Rank: God
Posted on 13-06-08 09:35
How did you get the hash? Pwdump? If so, post the full output from it.

I would also reccomend freerainbowtables.com.
mastergamer0168@gmail.com
Author

RE: hash crack
jamie_90
Banned

Posts: 129
Location: \system32\
Joined: 25.01.08
Rank: Active User
Warn Level: 100
Posted on 13-06-08 10:35
try this one http://www.securitystats.com/tools/hashcrack.php
ICQ# ask me Yahoo Id r00tsecurity.org
Author

RE: Help Cracking NTLM Hash
Uber0n
Member



Posts: 1963
Location: Sweden‭‮
Joined: 13.06.06
Rank: God
Posted on 13-06-08 10:48
Infam0us wrote:
Is the rest of that password an LM hash (thats my best guess)? It is exactly 7 characters missing.

Yes it is ^^ passwords longer than 7 characters are split up in two LM hashes; that's why they're so damn easy to crack compared to NT hashes ;)


http://uber0n.webs.com/
Nope http://uber0n.webs.com/
Author

RE: Help Cracking NTLM Hash
korg
Admin from hell



Posts: 1704
Location: ENDING YOUR ONLINE EXPERIENCE!
Joined: 01.01.06
Rank: The Master
Posted on 13-06-08 10:49
Just use JTR. A good wordlist will crack it in seconds.
PS: I would learn more on ntlm hashes. (Your comment on milworm's
error)


I deal in pain, All life I drain, I dominate, I seal your fate.
Author

RE: Help Cracking NTLM Hash
jamie_90
Banned

Posts: 129
Location: \system32\
Joined: 25.01.08
Rank: Active User
Warn Level: 100
Posted on 13-06-08 11:04
korg wrote:
Just use JTR. A good wordlist will crack it in seconds.
PS: I would learn more on ntlm hashes. (Your comment on milworm's
error)


yea, he need an good w-list
ICQ# ask me Yahoo Id r00tsecurity.org
Author

RE: Help Cracking NTLM Hash
korg
Admin from hell



Posts: 1704
Location: ENDING YOUR ONLINE EXPERIENCE!
Joined: 01.01.06
Rank: The Master
Posted on 13-06-08 11:12
http://www.theargon.com/achilles/wordlists/

For starters my wordlist is 4.5g now. And growing.


I deal in pain, All life I drain, I dominate, I seal your fate.
Author

RE: Help Cracking NTLM Hash
Zarray
Member



Posts: 96
Location:
Joined: 12.08.06
Rank: Monster
Posted on 13-06-08 11:13
http://freerainbowtables.com/

you can download a ntlm rainbowtable

http://zarray.my5gb.com/
Guest
Username

Password

Remember Me


Bookmark This Page
Affiliates
Adverts

 

 

Links

Anime Wallpaper Site
By using, viewing or obtaining any information contained on this site, you agree to the disclaimer.

© HellBound Hackers 2008- 2009. Since 3rd December 2004.

20607372 Unique Visits

Powered by HBH-Fusion