Password Cracking in Windows

Password Cracking in Windows -...

Info iconThis preview shows page 1. Sign up to view the full content.

View Full Document Right Arrow Icon
This is the end of the preview. Sign up to access the rest of the document.

Unformatted text preview: Password
Cracking
in
Windows
 Note:
Do
this
within
your
Windows
VM!
 • Step
1
–
Create
some
users
on
Windows
 o User1
:
hello
 o User2

:
123
 o User3
:
Flower
 o User4
:
Dragon
 o User5
:
hellodragon
 o User6
:
123Hello
 o User7
:
H3II0123
 Step
2
–
Download
pwdump6
from
the
following
website
 o http://swamp.foofus.net/fizzgig/pwdump/downloads.htm
 o Specificly
the
“pwdump6
2.0.0‐beta
no
source”
 o Extra
the
file
onto
the
desktop
 Step
3
–
Running
pwdump
 o Open
up
the
command
prompt
 o Type
 cd
Desktop
 pwdump
localhost
>
<password
file>
 Step
4
–
Downloading
Dictionaries
 o Download
all
the
dictionaries
you
like
from

 ftp://ftp.ox.ac.uk/pub/wordlists/
 http://www.outpost9.com/files/WordLists.html
 Step
5
–
Download
John
the
Ripper
 o Download
the
Windows
version
from

 http://www.openwall.com/john/
 o Extract
the
folder
to
the
Desktop
 Step
6
–
Run
John
the
Ripper
against
a
dictionary
 o Open
the
command
prompt
 o Type
 cd
Desktop\john1701\run
 john‐mmx
‐‐worldlist=<dictionary
you
downlaoded>
<password
file>
 Step
7
–
Display
the
passwords
 o While
in
the
john
the
ripper,
run
directory
 john‐mmx
‐‐show

<password
file>
 
 What
you
just
did
in
this
lab
is
a
dictionary
attack
 o Hybrid
attack
 john‐mmx
‐‐worldfile=<dicionaty
you
downloaded>
‐‐rules
<password
file>
 o Full
out
brute
force,
dictionary,
hybrid
 • • • • • • • • john‐mmx
<password
file>
 
 Try
the
some
passwords
you
normally
use.
Can
they
be
cracked?
 ...
View Full Document

Ask a homework question - tutors are online