darknet.org.uk— A good article clearly explaining how you can crack most passwords within a few minutes with the correct resources, includes sources for tables and software (with a free alternative to LC5)
Feb 27, 2006View in Crawl 4
salts can only moderately defeat rainbow tables. look at the basic crypt function (for *nix). Using the basic DES (2 chracters used as the salt) the hash can be permutated in 4096 different ways. Single DES has a 56 bit keyspace, and the way crypt determines the hash means that only the first EIGHT characters are used to compute the hash. so any password with a length greater than 8 can be cracked just as easily as its 8 character substringed counterpart.so, a rainbow table containing all 8 possible character combinations is the first step. then u just need 4095 additional tables w/ the same hashes computer using all the possible different salts, etc. and u can crack any basic DES crypt scheme.The bottom line here-- space is the main restriction as far as salts ability to defeat a rainbow table is concerend. w/ space becomming cheaper and more available, i wouldnt expect salting to stay too far ahead (aside from the fact that adding one extra character increases the space needed exponentially).
Cool article. The only problem I've had is actually creating all the tables b/c I don't know much about distributed computing. Then I found this cool site that sells Rainbow Tables. I've used the LM tables a ton and I have been able to find every password I've tried to find. They also have NTLM and MD5 tables. <a class="user" href="http://passwordsecuritycenter.com.">http://passwordsecuritycenter.com.</a>
If you are using windows you can boot into safe mode and log in to the administrator account and change your password. By default the administrator account is not password protected. If in the case that it is use ophcrack
Forgot Windows password? A Windows password reset bootable disk could do all the job for you, it can reset your forgotten or unknown Windows password safely and quickly without login, you can create a Windows password reset bootable disk with the tool Windows Password Breaker http://www.recoverwindowspassword.com/ , then use it to reset your password.
tuxidomasxFeb 28, 2006
salts can only moderately defeat rainbow tables. look at the basic crypt function (for *nix). Using the basic DES (2 chracters used as the salt) the hash can be permutated in 4096 different ways. Single DES has a 56 bit keyspace, and the way crypt determines the hash means that only the first EIGHT characters are used to compute the hash. so any password with a length greater than 8 can be cracked just as easily as its 8 character substringed counterpart.so, a rainbow table containing all 8 possible character combinations is the first step. then u just need 4095 additional tables w/ the same hashes computer using all the possible different salts, etc. and u can crack any basic DES crypt scheme.The bottom line here-- space is the main restriction as far as salts ability to defeat a rainbow table is concerend. w/ space becomming cheaper and more available, i wouldnt expect salting to stay too far ahead (aside from the fact that adding one extra character increases the space needed exponentially).
nicho1abMar 9, 2006
Cool article. The only problem I've had is actually creating all the tables b/c I don't know much about distributed computing. Then I found this cool site that sells Rainbow Tables. I've used the LM tables a ton and I have been able to find every password I've tried to find. They also have NTLM and MD5 tables. <a class="user" href="http://passwordsecuritycenter.com.">http://passwordsecuritycenter.com.</a>
suicidmanMay 7, 2006
ophcrack <a class="user" href="http://ophcrack.sf.net">http://ophcrack.sf.net</a> (freeware)Pwdump 2 (freeware, HASH-Tool) www.pcwelt.de/cfb <a class="user" href="http://lasecwww.epfl.ch/~oechslin/projects/ophcrack/index.php">http://lasecwww.epfl.ch/~oechslin/projects/ophcrack/index.php</a>
iforget1919Sep 15, 2006
LCP cracked one of my passwords in 10 seconds. NICE!
dexxmannDec 30, 2009
doesnt cain already have rainbow with it?
happychrisMar 10, 2010
I had personally tested the windows password recovery software to crack my windows password. It worked perfectly.more info: <a class="user" href="http://www.windowsloginrecovery.com" rel="nofollow">http://www.windowsloginrecovery.com</a>
zatinkerMar 16, 2010
I used this windows password recovery tool <a class="user" href="http://www.anypasswordrecovery.com/" rel="nofollow">http://www.anypasswordrecovery.com/</a> to bypass windows password,only with three steps,then left the forgotten windows password blank.Have a try.
cputhiefMar 17, 2010
If you are using windows you can boot into safe mode and log in to the administrator account and change your password. By default the administrator account is not password protected. If in the case that it is use ophcrack
zatinkerMar 18, 2010
I used this windows password recovery tool <a class="user" href="http://www.anypasswordrecovery.com/" rel="nofollow">http://www.anypasswordrecovery.com/</a> to bypass windows password,only with three steps,then left the forgotten windows password blank.Have a try.
killytuDec 27, 2010
Forgot Windows password? A Windows password reset bootable disk could do all the job for you, it can reset your forgotten or unknown Windows password safely and quickly without login, you can create a Windows password reset bootable disk with the tool Windows Password Breaker http://www.recoverwindowspassword.com/ , then use it to reset your password.