Saturday, March 15, 2008

Current Windows Password Hash Issues

I'm often asked what sort of Windows networking issues and flaws, much like "What works for Windows networking recon/attacks beyond LANMAN?" Now that the LANMAN authentication and storing of hashes is simply not done in the post-Vista release world, there are still a few tricks.

The best public work I've seen has been from Hernan Ochoa who happens to work for Core Security. See the Pass the Hash Toolkit for the tools and documentation.