Pass-the-hash attacks: Tools and Mitigation

日期: 2010/02/24 分类: 技术杂文 标签: , , 添加回复

Although pass-the-hash attacks have been around for a little over thirteen years,the knowledge of its existence is still poor.This paper tries to fill a gap in the knowledge of this attack through the testing of the freely available tools that facilitate the attack.While other papers and resources focus primarily on running the tools and sometimes comparing them, this paper offers an in-depth, systematic comparison of the tools across the various Windows platforms,including AV detection rates. It also provides exte…

Download PDF

Hash injection Attacks in a Windows Network

日期: 2009/12/30 分类: 技术杂文 标签: , , 添加回复

http://www.truesec.com/PublicStore/catalog/Downloads,223.aspx

During a Microsoft MVP summit in Redmond I demonstrated some of the work done by my group (Truesec Security Team) to some fellow security MVPs.

I was asked to write a blog on one of the “hash injection”-demos I demonstrated, so here we go:

Conceptual:

This is the concept of injecting a compromized hash into a local session and then use the hash to authenticate to network resources. This method eliminates the need for password cracking in a windows environment.

阅读全文

HASH注入式攻击

日期: 2009/12/30 分类: 技术杂文 标签: , 添加回复

文章作者:pt007[at]vip.sina.com
信息来源:邪恶八进制信息安全团队(www.eviloctal.com)
下载网址:
http://www.truesec.com/PublicSto … tectCookieSupport=1

To get a DOS Prompt as NT system:

C:\>sc create shellcmdline binpath= “C:\WINDOWS\system32\cmd.exe /K start” type= own type= interact
[SC] CreateService SUCCESS

C:\>sc start shellcmdline
[SC] StartService FAILED 1053:

阅读全文

破解MSSQL的HASH密码

日期: 2009/04/07 分类: 技术杂文 标签: , , 添加回复

破解MSSQL的HASH密码
原文名称 :Microsoft SQL Server Passwords (Cracking the password hashes)
原文地址 :http://www.ngssoftware.com/papers/cracking-sql-passwords.pdf
作者 :D avid Litchfield <david@ngssoftware.com>

Term : FreeXploiT

Author : ALLyeSNO

Date : 2005-3-25
翻译:ALLyeSNO <shellget@hotmail.com> http://blog.csdn.net/freexploit
参考文章:flashsky《浅谈SQL SERVER数据库口令的脆弱性》

阅读全文

使用Ophcrack破解系统Hash密码

日期: 2008/12/25 分类: 技术杂文 标签: , , 添加回复

作者:simeon

最近应antian365团队的安全课题研究,我负责进行系统口令攻防密码破解子课题的研究,不研究还不知道,研究后感觉在安全的领域,越是深入,越是感觉自己了解的东西太少,在密码破解上,平常用得最多的是LC5,关于使用LC5如何破解口令,请看团队撰写的《系统口令安全与审计》,LC5破解时间相对较长,一直以来俺都沾沾自喜,感觉自己密码破解方面还是不错的,可是通过本文的研究后,我彻底的无语了,一个不超过14位的系统密码一般不超过5分钟,绝大多数仅仅需要几十秒中,这意味着当一个系统存在漏洞时,可以在很短时间内控制并渗透内部网络!下面就将本人研究过程和研究方法跟读者朋友一起分享,也欢迎致力于网络安全的朋友加入antian365研究团队。

阅读全文