Jump to content
Sign in to follow this  
blackMath

pwdump8

Recommended Posts

Hi everyone!!

since from win10 version 1607 latest pwdump and other similar tools stop to dumps hash correctly, we decided to code a new version of pwdump8 that supports newly AES-encrypted hashes!!
No source code was released at this time, but you can find binaries available to download on our site

Enjoy your hashes!!

pwdump8-hak5.png

Share this post


Link to post
Share on other sites

Thanks for your contribution, it's working perfectly , but is still unavailable at KALI repository..

I wanna ask you , why the LM hash field still populated with a code at WINDOWS 10 despite Microsoft disable this hash technique from Vista and onward.

 

Share this post


Link to post
Share on other sites
Posted (edited)

Hi!

1st question: we know about that. and all tools on the kali suite as far as im concerned (last time i checked..) dumps the wrong hash.. maybe this will be the time ill write to offensive-security to add our new (and working) version...

2nd question: it's due to backward compatibility: it's true that LM hashes are disabled by default, but you can still force win to enable that. and because of that, the registry keys holding those hashes keeps "a place" also for the LM hashes to guarantee backward compatibility. because we deal with a raw registry binary key, and the program works in terms of simple offsets, (where those hashes are stored) we dump anyway the hash.

there are 3 possibilities:

- LM is disabled: the space holding the hash is filled with 0s (so we dump what is called "the empty LM hash")

- LM is enabled but password not set: again, filled with 0s and again we dump the empty hash

- LM is enabled and a password is set: we dump the corresponding hash

So, if the doubt is: do we tell between 1st and the 2nd case? the answer is, actually, no. I don't remeber if that information is inside those same reg keys we use for the actual dump, or anywhere else... i could fix it up for sure on a "live" dump (on a live system), for offline dump it depends on it, i wont add more keys to be exported, to maintain the same behavior of the others pwdump versions... I will check!

i hope now everything its clear... for further question write to us @ info@blackmath.it! I hope you (and me) soon will find pwdump8 in the kali repo!

Edited by blackMath

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...