digg

Facebook Connect Join Digg About

Crack Windows Passwords in Minutes!

ophcrack.sourceforge.net — Ophcrack is a brute-force cracker of pre-computed hashes called rainbow tables. Simply burn the CD, pop it into the victim's computer, Ophcrack will boot into a Linux shell, extract the password file, and find a match. For more information on rainbow tables, see Rainbow table - Wikipedia

Who dugg this? Made popular Jul 27, 2006

Add a friend

submitted by

liquidhot Jul 27, 2006

1214 diggs
digg

137 Comments

OmegaMike, on 10/12/2007, -1/+48if you don't know what a .iso is, then perhaps it's best you just stay away from things like this...
ViperDaimao, on 10/12/2007, -1/+47*looks at password stick note on your monitor*
M2Ys4U, on 10/12/2007, -1/+33Use passwords 16 characters or more in length and it'll be much harder as Windows won't store it as an LM hash.
beelz, on 10/12/2007, -1/+27That's the same password I use on my luggage!
Bigcat151, on 10/12/2007, -3/+29Very good program. I have used it several times on my roommate's computer since he is an a-hole and won't let me use it unless he is in the room.
Darth_tater, on 10/12/2007, -1/+18just incase your wondering about how to disbale the LM hashes

Disable LM password hash storage system-wide by using Group Policy or Local Security Policy. Navigate to Computer ConfigurationWindowsSettingsSecuritySettingsLocalPolicies. Select Security Options, then double-click Network Security: Do not store LAN Manager hash value on next password change. Click Enabled, then click OK. Alternatively, you can edit the registry. Open a registry editor (e.g., Regedt32.exe) and navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa. From the Edit menu, select Add Key and type NoLMHash. Press Enter, quit the registry editor, and restart the computer. To activate the setting, change the password.
techgeek, on 10/12/2007, -12/+27There's a duplicate story just a couple of weeks ago: http://www.digg.com/security/Windows_account_password_cracks ... got over 3000 diggs, did you guys miss it?
p1mpjuice, on 10/12/2007, -1/+16Or edit the registry so Windows stores it as a NT hash regardless of length, and then you can just laugh as this cant crack it.
seanieb, on 10/12/2007, -9/+23This has benn dugg before:
http://digg.com/software/OPHCRACK2-CRACK_ANY_WINDOWS_PASSWORD
http://digg.com/security/Recovering_that_damn_NTFS_Password_-_The_only_tool_you_ll_ever_need!
http://digg.com/security/Windows_account_password_cracks

Try Digging a story about how to use the search box ;-D
iamcanman, on 10/12/2007, -0/+8*poses as sysadmin, asks @MrViklund to log me in for updates*
finalmillenium, on 10/12/2007, -1/+9Using a simple registry hack or system policy, you can disable the use of LM hashes. I do this on about every system I work on.
thegreyfox, on 10/12/2007, -2/+10My password is 1 2 3 4 5

lets see who comes up with the movie to that reference
evilTak, on 10/12/2007, -1/+9...then you burn it to a CD and boot the CD.
jefferson, on 10/12/2007, -0/+7that wont help you either in an office environment if you really want someones password call IT say you forgot your password they will reset it so that you have to create a new one when you try to login.

passwords are like locked doors they only keep honest people out
trollick, on 10/12/2007, -0/+6Oh my god it ***** is!
rebrane, on 10/12/2007, -3/+9That's a long password!
inactive, on 10/12/2007, -2/+8wow sosmeone is learning..
yes despite 300 people saw this last time, including myself, enough peopel didnt see it last time, and this is intersting enough, that it has graced the front page twice, really says good things about ophcrack and not really bad things about digg that is functioning as it should.
Just to put it in perspective.
Digg has been up for a little over a year and a half now.. Ok lets say 2years.or 730 days,or 17,520 hours
accroding to kevin rose recently, almost 40,000 stories have reached the front page in that time. SO about 55 stories per day(and mind you i am doing two years instead of the less time they have actually been up).. so about 55 a day.. or 2.3 an hr.. lets make that 2/hr
SO if you visit digg and read the front page for an hour a day, you will miss 38 stories a day. Why 38 because there are 15 stories on the front page and you dont have to wait on them..if you broswe for an hour 2 more stories will be added. SO every ten days a user that frequents digg every single day for 1 hour will miss 380 stories. And he is a regular.
And yeah i know there are peak story times, but not everyone lives in the same time zone or are up at the peak time.
So please just deal with what people find interesting and know that when ophcrack rreaaches the front page twice, it is because it is robably cooler than something that has only reached the front page once...
add the two article diggs together and you have what this would have gotten had everyone been on line at the same time..
sorry for the long rant but i am over calfinated.
mc7winkie, on 10/12/2007, -2/+8Or you can just restart in safe mode. Use the Admin profile change the passwords of other accounts or create a new one. Restart in regular mode and... BAM!! Full access.
stuffhappens, on 10/12/2007, -3/+9"Try Digging a story about how to use the search box ;-D"

http://www.digg.com/offbeat_news/How_to_be_a_competent_Digg_submitter

http://stuffhappens.tblog.com/

I'm working on it
MrMuffMeat, on 10/12/2007, -0/+6I love how digg users wig the ***** out when someone posts a dupe. They are almost as bad as the grammar teachers who digg here.
evilTak, on 10/12/2007, -1/+6Or you could just use a tool like http://home.eunet.no/~pnordahl/ntpasswd/ and reset the password regardless of its crackability.
liquidhot, on 10/12/2007, -1/+6Ophcrack 2.3 is out now, when that was posted it was at 2.1.
M2Ys4U, on 10/12/2007, -1/+6burn it to a CD...
Bigcat151, on 10/12/2007, -0/+5An iso is a disc image file. Open the iso with a cd burning program and burn. Very simple if you have burning software that will recognize iso files.
WhoDey, on 10/12/2007, -1/+6@M2Ys4U
Ahem. That's 15 characters or more, not 16. LM hashes are stored in two 7-byte chunks.

And to those who say NTLM hashes can still be pre-computed because they are not salted, that's true, but you have a VASTLY larger search space, as you can't rely on the password being in 7 character chunks. I'm not saying someone couldn't pre-compute the hashes, I'm just saying its a lot more time consuming and requires a LOT more storage space.
DarkElf109, on 10/12/2007, -1/+6Just so everyone knows, NT hashes are still hashes, and still are unsalted. http://rainbowcrack.com has has nearly 100% of the hash tables pre-calculated for the NTLM hash. All you need to do is pre-calc a table, and you get 2 weeks access. There are also pay services that have the NT hash generated.
NSMike, on 10/12/2007, -3/+8How young ARE you people that it would even be CONSIDERED difficult to know what that is a reference to?
stuffhappens, on 10/12/2007, -1/+6http://www.digg.com/offbeat_news/How_to_be_a_competent_Digg_submitter
jangelo, on 10/12/2007, -0/+4yeah, many people still leave the admin password blank.
gruvsf, on 10/12/2007, -0/+4I think the point is to crack the password without the owner knowing it
CharlesDarwin, on 10/12/2007, -1/+5No, only an idiot would make mc7winkie his username.
roostishaw, on 10/12/2007, -3/+6AHHHH!!
How many times will this make the front page?
How many script kitties think they've made a big discovery?
[/rant]
jwalker612, on 10/12/2007, -0/+3kotton to change the values:

For Windows 2000, locate and click the following key in the registry: HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa

From the Edit menu, click Add Key, and then add the following registry key: NoLMHash. Set NoLMHash = 1

In XP Value name: NoLMHash, Data type: REG_DWORD Radix: Decimal Value data: 1
Bigcat151, on 10/12/2007, -1/+4To clarify...this tool will not reset the password. It will only display it so you can write it down. Very useful when you want to access someones computer without changing their password.
bodger, on 10/12/2007, -0/+3I agree that reseting the password is simpler (say it's your own computer and you've forgetten the password), but sometimes you might want to retrieve a password without anyone be any the wiser...
OandA, on 10/12/2007, -1/+4Is GOD a good password? How about SEX?
the sad thing is so many of u will get that refrence
trollick, on 10/12/2007, -0/+3My password is 'qwerty'. It is always 'qwerty'. In case you wanted to know.
btboudreaux, on 10/12/2007, -0/+314 characters or less is stored as LM hash. 15 or more is stored as NT hash and can't be cracked by ophcrack. You can also force windows to store passwords as NT hash no matter what the length by tweaking the registry or through group policy. I think it's group policy.
quokkapox, on 10/12/2007, -2/+5does anyone have a .torrent link? it's so much more reliable to download large files via bittorrent. it's hard to grab a 500MB iso when your net connection is unreliable (I live in america)
javiel, on 07/08/2008, -0/+3In safe mode or under administrative account.
Start>run>control userpasswords2
gmikej, on 10/12/2007, -1/+3@Jugulator: I just read yesterday in TechNet Mag that Vista will allow both NTLM and std LM but will have LM Disabled by default. Vista will be much more secure- similar to a default build of Win2k3
NJank, on 10/12/2007, -0/+2badger badger badger bader...
MrMuffMeat, on 10/12/2007, -0/+2Is it your English teacher? hehehe.
CharlesDarwin, on 10/12/2007, -1/+3fscking noob!
JoshuaWood, on 10/12/2007, -0/+2Well at least he didn't keep using qwerty on his Yahoo mail account.
inactive, on 10/12/2007, -0/+2"that doesn't help when you can't get in."
I have used it before with bootable cd's to reset passwords.. I find it very handy.
It is definately quick to just reset the password sometimes.. could be dangerous if you had encrypted files and such
and i tend to use ophcrack more often
userian, on 10/12/2007, -0/+2A rainbow table that fits on a CD? Doesn't sound very usefull to me...
gmikej, on 10/12/2007, -1/+3Or since it's Win9x you can just press the Cancel button when it asks for a password...
inactive, on 10/12/2007, -1/+3@ finalmillenium

Then you'd be quite upset to see my directory of 200+ user accounts' LM hashes that I cracked in about an hour and 45 minutes when we did a password audit at my workplace. LM hashes are WAY too easy to crack.

Lesson to admins: Edit the registry to store everything as an NT hash.
M2Ys4U, on 10/12/2007, -1/+3@WhoDey: Yes, you're right... a typographical error on my part :)
Show 51 - 100 of 134 discussions
Add a Comment

Login or register to comment!
Or, sign-in super fast with your Facebook account ...

Site Links: Home; Take a Tour; Search Digg; Digg Mobile; RSS Feeds; Popular Archive

Help: Frequent Questions; How Digg Works; Report a Website Bug

All About Digg: About Us; Contact Us; Community Guidelines; The Digg Blog; Digg Townhalls & Meetups; Jobs at Digg; Advertise on Digg; Diggnation Podcast

Digg Store: Get hats, shirts, hoodies, stickers, and more at the Digg Store.

Digg Tools & API: All Digg Tools; DiggBar Tools; Firefox Toolbar; Twitter Feeds; Add Digg to Google; Netvibes Widget; Integrate Digg Buttons; Digg Badges; Make a Digg Widget; API for Developers

Digg Dialogg!: Digg Dialogg lets you choose the questions.

Digg Labs: Get a real-time view beneath the surface of Digg.; Digg Labs Home; Arc, Swarm, Stack, Bigspy, Pics

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.