Security Xploded
 
  |    Home    |    Projects    |    Research    |    Articles     |    Security Tools    |    Download    |    Blog    |    About    |
 
Search
Latest Stuff
 
FirePassword for new Firefox version
FireMaster with New Features
Hacker Reversing Challenge 2007 Solution
Make your application Vista UAC compliant
Watch your shares from intruders  
Top Tools
 
NetShareMonitor: Monitor shares from intruders
FireMaster: Recover Firefox master password
FirePassword : Dump Firefox sign-on secrets
RemoteDLL: Remove DLL from process
ProcHeapViewer: Enumerate process heaps
Top Articles
 
Using Rainbow crack to recover Windows password
Rapair Windows registry using BackTrack
Unpack UPX using OllyDbg
Writing PESpin plugin for ImpREC
Decrypting Firefox sign-on secrets
 
 
 
 
 
 
 
 
 
Rainbow Crack
Recovering the Windows Password in Seconds
 
 
About Rainbow Crack
Gone are the days when we have to wait for the days together to recover the Windows account password. Thanks to the rainbow crack technology, now you can crack the passwords in few seconds with 100% success rate.

This Rainbow cracking technology works on simple concept. Instead of computing the LM hashes dynamically during cracking, hashes are computed in advanced for all character sets. These hashes are then stored in rainbow tables. So cracking involves just comparing the pre computed hashes with the LM hash for the account to be cracked. Hence it takes very less time compared to traditional method of brute force cracking. Setting up the rainbow table for various character sets is just one time activity and may take days or months based on the character set and speed of the machine. Once the rainbow tables are ready, you can feed your LM hashes to it and get your password cracked in seconds.
 
 
Recovering LM Hash
In order to recover your Windows user password, you have to get the LM hash for the target account. This can be done in many ways. If you have another administrator user account on the same machine then you can login with it and dump the LM hash for other account using pwdump tool. Other way is to boot using BackTrack live cd or Windows restore CD and then copy the SAM & SYSTEM hive files (which is located in c:\windows\system32\config folder. Note that your system drive may be different). Next feed these files to Cain & Abel tool to get the LM hashes for the target account.
 
 
Recovering Windows Password
Now you have LM hash and have setup the rainbow tables, you can start cracking operation using the 'rcrack' tool that comes with RainbowCrack utility pack. If you don’t have enough disk space or can’t wait for months together to setup rainbow tables then you need not have to worry. There are lot of websites which offer free as well as commercial online rainbow cracking. Using free service, you have to wait at most for a day as there will be lot of requests in the queue. However you can get the job done quickly by paying small amount. If you are large organization which involves periodic password recovery process, then you can think of buying those rainbow tables.
 
Here are the few websites which offer free/commercial online rainbow cracking.
https://www.astalavista.net
http://plain-text.info

Hope this article has enlightened you on new quick method of recovering Windows password.
 
 
References
  1. RainbowCrack: Fast method of recovering Windows password. 
  2. pwdump: Tool to dump hashes of Windows user accounts.
  3. Cain & Abel: Multi purpose security tool.  
  4. BackTrack Live CD : Linux live CD distribution for Pentesting.
  5. Online Rainbow Cracking : Online rainbow cracking service from Astalavista.
 
 
See Also
   Fixing Windows registry using BackTrack
   FireMaster to recover Firefox master password.
 
 
 
 
 
 
 

Total Hit Count: Hit Count
"security through obscurity is just an illusion"
                                   -anonymous 
For any queries and suggestions, please drop a mail to tnagareshwar at gmail.com
 
 
www.SecurityXploded.com © 2008, All rights reserved by Nagareshwar Talekar.                        Built for Firefox