Extract the hashes for example like the guy said below use pwdump and
start some crack soft - john the ripper for
example(http://www.openwall.com/john/e/john171w.zip) with the
appropriate resources package ...for example - mscash(if you are going
to crack domain passwords ....) -
http://www.openwall.com/john/contrib/john-1.7.2-mscash-alainesp-4.1.diff.gz
empty passwords will start poping up immediately
hope this helps you :)
have a nice day all
77 61 72 72 69 6F 72 20 62 79 20 73 6F 75 6C
Vladimir
On 4/3/07, Kevin Gay <rot_betruger@sbcglobal.net> wrote:
Turn on password length of 6 and see who complains :P, that is if there
is some ethical problem with cracking the sam file, but I do have to
question why its not set to begin with.
Kunz, Jeffrey T. wrote:
> Dump the sam file (use pwdump) and run a cracker. The most simplistic
> settings on any cracker will show the blank passwords immediately.
>
> Regards,
>
> Jeff
>
> -----Original Message-----
> From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
> On Behalf Of igor.mamuzic@koncar-inem.hr
> Sent: Monday, April 02, 2007 11:43 AM
> To: focus-ms@securityfocus.com
> Subject: Discovering Active Direcory users with blank passwords
>
> Is there a way to discover Active Directory users with blank passwords
> if I have domain admin privileges and local access to my domain
> controllers?
>
> Best Regards,
> Igor
>
>
> The preceding email message may be confidential or protected by the
attorney-client privilege. It is not intended for transmission to, or receipt by, any
unauthorized persons. If you have received this message in error, please (i) do not
read it, (ii) reply to the sender that you received the message in error, and (iii)
erase or destroy the message. Legal advice contained in the preceding message is
solely for the benefit of the Foley & Lardner LLP client(s) represented by the
Firm in the particular matter that is the subject of this message, and may not be
relied upon by any other party.
>
>
> Internal Revenue Service regulations require that certain types of written
advice include a disclaimer. To the extent the preceding message contains advice
relating to a Federal tax issue, unless expressly stated otherwise the advice is
not intended or written to be used, and it cannot be used by the recipient or any
other taxpayer, for the purpose of avoiding Federal tax penalties, and was not
written to support the promotion or marketing of any transaction or matter
discussed herein.
>
>
>
--
77 61 72 72 69 6F 72 20 62 79 20 73 6F 75 6C
011001110110001001100011001000000111011
101101001011011000110110000100000011011
100110010101110110011001010111001000100
000011001000110000101111001001000000111
011101100101001000000111011101101001011
011000110110000100000011100100111010101
101100011001010010000001110100011010000
110010100100000011101110110111101110010
011011000110010000100000011001100110111
101110010011001010111011001100101011100
100010111000100000010101110110010101101
100011000110110111101101101011001010010
000001110100011011110010000001101101011
110010010000001110111011011110111001001
101100011001000010000001100010011010010
11101000110001101101000
