What kind of access to the machine do you have? I assume some account on the system right? Is it an admin account?
Lophtcrack is now @Stake's LC4, and it works wonderful. Provided you have admin access to the machine, or have access to the SAM's db. The other tool you might want is pwdump. I don't have a lot of time to explain those tools, but with ntfsdos you can get to the sams db, copy to a floppy, and crack. Another way would be to simply make a script that adds some random nonadmin user to the admin group and put it in the startup, and get the admin to login. There is a big red book called Hacking Exposed: Windows 2000, cool book. If you have it, it should take you more than a day or two to break into the system. -- jon mailto:[EMAIL PROTECTED] Wednesday, September 4, 2002, 3:24:49 PM, you wrote: AO> Yup. Well, I am going to install software, so that is going to be AO> noticeable as well. AO> Any software that can find the existing password? AO> -----Original Message----- AO> From: Kevin Gilchrist [mailto:[EMAIL PROTECTED]] AO> Sent: Wednesday, September 04, 2002 1:50 PM AO> To: CF-Community AO> Subject: RE: Capturing Windows 2000 Admin ID and Password AO> Yep, we've used it a few times like when we inherited servers from AO> acquisitions and didn't have the local admin passwords. It's a great AO> utility, it'll even give you an image for a bootable CD. AO> I wouldn't recommend doing this however as the admin password being AO> changed is kinda noticeable! AO> -----Original Message----- AO> From: Andy Ousterhout [mailto:[EMAIL PROTECTED]] AO> Sent: Wednesday, September 04, 2002 2:38 PM AO> To: CF-Community AO> Subject: RE: Capturing Windows 2000 Admin ID and Password AO> I do have access to the machine. This works? AO> -----Original Message----- AO> From: Kevin Gilchrist [mailto:[EMAIL PROTECTED]] AO> Sent: Wednesday, September 04, 2002 1:35 PM AO> To: CF-Community AO> Subject: RE: Capturing Windows 2000 Admin ID and Password AO> If you have physical access and can reboot it you can use the ERD AO> commander at www.winternals.com which will allow you to reset the local AO> admin password. AO> Alternatively you can use lophtcrack to brute the password by sniffing AO> LAN MAN hashes off the network. If they haven't hardened the box it'll AO> uses LAN MAN hashes for authentication (in addition to the more secure AO> versions). AO> -----Original Message----- AO> From: Andy Ousterhout [mailto:[EMAIL PROTECTED]] AO> Sent: Wednesday, September 04, 2002 2:21 PM AO> To: CF-Community AO> Subject: Capturing Windows 2000 Admin ID and Password AO> FedEx is forcing a separate computer down my company's throat that will AO> only run their software - Cafe. This is not a software issue but is a AO> "Business Decision". Their choice is really messing up my shipping AO> process AO> which requires access to my order processing system (duh!). AO> Does anyone have any ideas for how I can crack the Admin password? I am AO> thinking about installing video camera's to video the keyboard as the AO> FedEx AO> techie does the install to capture the Admin name and password. Any AO> other AO> ideas? AO> Signed: Pissed at corporate ignorance. AO> ______________________________________________________________________ This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
