|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: SAM encrypted with syskey
From: Brendan Dolan-Gavitt (bdolangavitt
wesleyan.edu)
Date: Thu Feb 10 2005 - 21:09:35 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
There are utilities for extracting the syskey and decrypting the SAM at
http://studenti.unina.it/~ncuomo/syskey/ . Note that this is the third
result on Google if you search for "syskey" :p
From there it's just a basic LM or NT password cracking exercise...
-Brendan
> -----Original Message-----
> From: Anzaldo, Oscar [mailto:Oscar.Anzaldoxerox.com]
> Sent: Tuesday, February 08, 2005 10:50 AM
> To: vuln-devsecurityfocus.com
> Subject: SAM encrypted with syskey
>
> Hi list,
>
> Does any one knows a method to retrieve the password for the SAM
> (NT/W2K) that has been encripted with syskey? Or bypass the system
> startup password?
>
> Regards
>
> Oscar.
>
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFCDCHvOmq2C6cMAtYRAnbrAJ0bhiQMuvSFJkBuhGj/mZroeuSkPACeNate
gIwDolcapPwmcCwrUk9KdKA=
=UGGN
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]