- How to crack Windows administrators passwords
- Cracking FTP Passwords Using Diictionary Attacks
- Free Hackng Tools essential for Every Hacker
- Brute Force Password Cracking explained
How to Crack Windows Administrator Passwords
Some times it necessary to know admin passwords in schools ,collages to log in with admin privileges to do various thingsThere are many way to crack passwords. But in this tutorial I will explain a very basic method using a single tool to crack windows password . This might come handy in places like schools ,collages where you cant use your live Linux cds , usb ..etc because your being watched
Things we need :
1. Pwdump or Fgdump to extract password hashes
In this tutorial I will be using Pwdump
Extracting Password hashes :-
1. Open My computer and go to C:\Windows\system32 . now place the Pwdump file which we download earlier
2. Now open command prompt and navigate to C:\Windows\system32 \Pwdump
Using cd command and click enter
Example :-
Cd C:\Windows\system32 \Pwdump
3. Now you can see a list of Pwdump commands as shown
4. Now enter pwdump - localhost >>“ destination of output file “ (for 32 computers) and pwdump -x localhost >> “destination out put file “(for 64 bit computers )
Example :-
Cd C:\Windows\system32 \Pwdump localhost >> C:\hashes.txt
Cd C:\Windows\system32 \Pwdump -x localhost >> C:\hashes.txt
5. Now open the Out put file you can see the names of the different users with password hashes Now copy the hashes corresponding to the admin account
Cracking The Hashes
Considering that we are in school/collage were we cant use tools to crack passwords so as an alternative we are using online password cracking sitesCracking The Hashes
1. Go to online password cracking sites like www.cracker.offensive-security.com ,www.onlinehashcrack.com and paste the hash select hash type as LM and click decode
2.By this way we are able to crack windows password using a single tool
Note:- If your not able to crack password hashes online use tools like john the ripper to crack password hashes . You can even copy the hashes and decoded it in your house
Cracking FTP Passwords Using Dictionary Attacks
In layman language, Dictionary attack means using a tool that picks passwords from a wordlist and tries them one by one until one works
How to make a wordlist ?
A wordlist can consist of all possible combinations ofletter,numbers,special characters. It can have some common or default passwords. You candownload the wordlist generators or google the wordlists for bruteforcing and configure them according to yourself.
How fruitful attack can be ?
If we are try all possible combinations of letter,numbers,special characters, theoretically chances of success are 100%. But practically it is not possible to try every combinationbecause it can take a lot of time. This attack just depends on the time you give,processing power and ofcourse your luck.
Tool I will be using ?
- THC Hydra
Step 1
Download THC Hydra from here
Step 2
(a) Make a usename wordlist consisting of some common usernames like this
(b) Get a wordlist of passwords
(c) Copy both wordlists to your hydra folder
Step 3
(a)Open the command prompt and change directory to your hydra folder using cd command.
(b) Type "hydra" without quotes and it will show you the options to use.
(c) Now to start attak,
Type "hydra -L userslist.txt -P passlist.txt xxx.xxx.xxx.xxx ftp" and press enter
where userslist.txt is the list of usernames, passlist.txt is the list of passwords andxxx.xxx.xxx.xxx is the IP address of target, Now it will start cracking
To use a single username instead of wordlist , Replace capital L with small l , like this
Type "hydra -l username -P passlist.txt xxx.xxx.xxx.xxx ftp"
Note : Ftp port must be open.
Warning: I highly recommend you to use a chain of proxies to spoof your identity because proper logs of user's IP addresses who try to connect to ftp server is made on the server. Here is an example of the same.
Countermeasures to protect yourself from this attack:
1. Use strong passwords
2. Enable Autoban of IPs or anyother option like this.
Free Hacking Tools essential For every Hacker
Free Essential Hacking tools For every Hacker:
IP Tools:
IP-Tools offers many TCP/IP utilities in one program. This award-winning Free Hacking tool can work under Windows 98/ME, Windows NT 4.0, Windows 2000/XP/2003, Windows Vista and is indispensable for anyone who uses the Internet or Intranet.
It includes the following utilities
1.Local Info – examines the local host and shows info about processor, memory, Winsock data, etc.
2.Name Scanner – scans all hostnames within a range of IP addresses
3.Port Scanner – scans network(s) for active TCP based services
4.Ping Scanner – pings a remote hosts over the network
5.Telnet – telnet client
6.HTTP – HTTP client
7.IP-Monitor – shows network traffic in real time & many more
8.IP TOOLS has almost all the utilities built into it.So there is no need to use seperate tools for every indivisual process of hacking such as Port scanning,Whois scanning,IP monitor etc.It’s like a hacking tool kit which has all the necessary tools for hacking.
Download IP Tools Here
Cain and Able:
Cain and Abel (sometimes called simply "Cain") is a Windows password recovery tool. It can recover many kinds of passwords using methods such as network packet sniffing, cracking various password hashes by using methods such as dictionary attacks, brute force and cryptanalysis attacks. Cryptanalysis attacks are done via rainbow tables which can be generated with the winrtgen.exe program provided with Cain and Abel. Cain and Abel is maintained by Massimiliano Montoro.Download Cain and Able Here
Brutus ( Password Cracker):
Brutus is a remote online password cracker for windows, good for HTTP,POP3,FTP,SMB,Telnet and lots others.. it's also free. It is available for Windows 9x, NT and 2000, there is no UN*X version available although it is a possibility at some point in the future. Brutus was first made publicly available in October 1998 and since that time there have been at least 70,000 downloads and over 175,000 visitors to this page. Development continues so new releases will be available in the near future. Brutus was written originally to help me check routers etc. for default and common passwords,I have also made a post on Brute force
Password Cracking explained alternatively you can Download Brutus Password Cracker Here
RainbowCrack:
A very nice Hacking tools.Its general propose implementation of Philippe Oechslin's faster time-memory trade-off technique. It cracks hashes with rainbow tables,
Features:
Full time-memory tradeoff tool suites, including rainbow table generation, sort, conversion and lookup
Support rainbow table of any hash algorithm
Support rainbow table of any charset
Support rainbow table in raw file format (.rt) and compact file format (.rtc)
Computation on multi-core processor support
Computation on GPU (via NVIDIA CUDA technology) support
Computation on multi-GPU (via NVIDIA CUDA technology) support
Runs on Windows XP 32-bit, Windows Vista 32-bit and Windows 7 32-bit
Command line and graphics user interface
Download Rainbow Cracker Here
LC5(LophtCrack):
Windows password auditing and recovery application L0phtCrack or LC5 attempts to crack Windows passwords from hashes which it can obtain (given proper access) from stand-alone Windows workstations, networked servers, primary domain controllers, or Active Directory. In some cases it can sniff the hashes off the wire. It also has numerous methods of generating password guesses (dictionary, brute force, etc). LC5 was discontinued by Symantec in 2006, then re-acquired by the original L0pht guys and reborn as LC6 in 2009.
Download LC5 here
John the Ripper:
A powerful, flexible, and fast multi-platform password hash cracker John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types which are most commonly found on various Unix flavors, as well as Kerberos AFS and Windows NT/2000/XP LM hashes. Several other hash types are added with contributed patches. You will want to start with some wordlists, which you can find Here and download john ripper here.
Hope you liked the collection of Hacking tools i will be adding more sooner
Brute force Password Cracking explained
This is how you do it. All that you need is the username and findout what is the max password length the software/site allows and also the minimum. say the minimum is 6 and max is 8. You have to start trying out all the combination.First all the six letter combos then seven then 8
aaaaaa
aaaaab
aaaaac
aaaaab
.
.
abaaaa
.
.
azzzzz
baaaaa
.
..
zzzzzz
Now once you do for 6 repeat the same for 7 and then for 8 . You will surely crack it.But the no of combos you need to try is very high.So in most cases you cannot use it but designed software do the job in few minutes. Check crack passwords section for such software's to crack your software/site. This is best used to recover passwords of mobile phone . If use them for hacking,you guys just remember to use strong passwords both upper,lower case and number too to make a strong password usually not below that 9 letter and minizme the chances of getting your account hacked
Here are the two most popular and well known Brute forcers
1.Brutus aet2 2.Munga Brute force
Read More ->>
