恢复windows密码的rainbow table(time-space trade-off)的介绍
2014-02-19 22:46
471 查看
http://securityxploded.com/rainbowcrack.php
Recover Windows Passwords Using Rainbow Crack |
See Also |
Windows Password Recovery using Live/Offline/Remote Method Windows Password Kracker : Free Windows Password Recovery Software RemoteDLL: DLL injection based tool to inject/remove DLL from process. NetShareMonitor: Monitor your shares from intruders. ProcNetMonitor: Process Network Port Monitoring Tool |
About Rainbow Crack |
Gone are the days when we have to wait for the days together to recover the Windows account password. Thanks to the rainbow crack technology, now we can crack the passwords in few seconds with 100% success rate. This Rainbow cracking technology works on simple concept. Instead of computing the hashes for each password dynamically and comparing with the correct one during cracking, password hashes are computed in advance for all character sets. These hashes are then stored in datasets called rainbow tables. So cracking involves just comparing the current password hash with the pre computed hashes within the rainbow tables and get the associated plain text password. Hence it takes very less time compared to the traditional method of brute force cracking. Setting up the rainbow table for various character sets is just one time activity and may take days or months based on the character set and speed of the machine. Once the rainbow tables are ready, you can feed the password hash to it and get your password cracked in seconds. |
Recovering Windows Account Password |
In order to recover your Windows user password, first you have to get the LM hash for the target user account. This can be done in many ways. You can use any of the tools such as]pwdump, cain&abel or LC5. You need to have administrator privileges to dump the hashes using these tools. If you have lost administrator password itself, then you can boot the system usingBackTrack live cd or Windows restore CD and then copy the SAM & SYSTEM hive files (which is located in c:\windows\system32\config folder. Note that your system drive may be different). Next feed these files to Cain & Abel tool to get the LM hashes for the target account. |
Here is the screenshot of retrieving LM hash for users using the Cain&Abel tool |
Once you have collected the LM password hash, you can start the password cracking operation using the rcrack tool (part of the RainbowCrack Project) with the rainbow tables that you have already created for certain character sets. |
Note that with Vista onwards Windows no longer stores LM hashes (unless under certain configurations) as it was susceptible to easy brute force cracking. In such cases, you can as well use the NTLM hash to recover password with RainbowCrack. |
Ideally setting up the rainbow tables takes huge amount of disk space and lot of computing time to generate the tables. Hence its not practical for anyone to create such an setup on the home system. |
Online Rainbow Cracking |
To make the game eaiser, lot of websites ( including free as well as commericial ) offer free online rainbow cracking service. These organizations have setup huge database of rainbow tables for all keysets on their high end machines which makes the cracking possible in few seconds. Also these services offer password cracking for different type of hashes such as LM, NTLM, SHA, MD5 etc. For FREE services you may have to wait for some time based on the load and incoming requests. However you may also look for commercial services for quick results at smaller cost. If you are an organization who needs this kind of password recovery service frequently then you can consider buying precomputed rainbow tables for reasonable price and perform the password cracking operation using rcrack tool. |
Here are the list of websites which offer FREE online rainbow cracking. http://md5decrypter.co.uk http://Hash-Cracker.com http://onlinehashcrack.com http://plain-text.info/add/ http://hashcrack.com/index.php |
If you find good online hash cracker links let us know, we will update it here. |
Now you don't have to wait for days together with half hope to get back your lost password :) |
References |
1. RainbowCrack: Fast method of recovering Windows password. |
2. pwdump: Tool to dump hashes of Windows user accounts. |
3. Cain & Abel: Multi purpose security tool. |
4. BackTrack Live CD : Linux live CD distribution for Pentesting. |
5. LC5 : Tool to dump hashes and recover passwords for windows users. |
See Also |
Windows Password Recovery using Live/Offline/Remote Method Windows Password Kracker : Free Windows Password Recovery Software RemoteDLL: DLL injection based tool to inject/remove DLL from process. NetShareMonitor: Monitor your shares from intruders. ProcNetMonitor: Process Network Port Monitoring Tool |
相关文章推荐
- windows 2003 server密码恢复
- ERDCommander2005恢复忘记的windows帐号密码
- 重新安装 Windows 2000 后密码的恢复
- Windows 7密码恢复办法
- Windows 2000、XP、2003登录密码恢复攻略
- 一种利用SQLServer恢复Windows超级管理员密码的有效办法
- MySQL在Windows和Unix下密码恢复
- 快速恢复Windows 2000/XP遗忘的管理员密码
- 大费周折--从待机恢复时取消提示密码--windows 编程
- Windows 2008 修改密码策略简单介绍
- 快速恢复Windows 2000/XP遗忘的管理员密码
- 一种利用SQLServer恢复Windows超级管理员密码的有效办法 (转)
- windows下重置mysql的root密码方法介绍
- WINDOWS系统(XP、Vista、Win7) 用户密码恢复工具
- 快速恢复Windows 2000/XP遗忘的管理员密码
- 如何破解Windows密码[LM/NTLMv2介绍]
- Windows 2008 R2 密码恢复
- Windows 2000管理员密码恢复数法
- Windows深入了解故障恢复控制台3--控制台命令介绍
- linux和windows互传文件、用户密码的配置文件、用户组和用户的管理的介绍