I took the time to generate the 64 GB tables with the full
US-ASCII character set (I spread it out over a couple of dozen servers and it
only took about a week) last year.
I ran it last week against one of my environments. It
cracked 1,628 passwords out of 1,629 total accounts in 18 hours. Not bad at
all.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of McCann, Danny
Sent: Wednesday, August 09, 2006 11:00 AM
To: [email protected]
Subject: RE: [ActiveDir] Weak AD passwords
Hi
Haven't used it, but one of my colleagues swears it's too good.
:) Try Rainbow Tables.
Cheers
Danny
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
Sent: 20 March 2006 21:38
To: [email protected]
Subject: [ActiveDir] Weak AD passwordsCan anyone recommend any tools to find which of our users have weak AD passwords? We used to use L0phtcrack back in the day, but it doesn't appear to be supported any longer? Other than enforcing complex passwords (which we do) and 8 character minimum, we'd like to figure out who uses things like "Password1" or something silly like that.Thanks in advanceEmail has been scanned for viruses by Altman Technologies' email management service
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.
This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
