Thread: Cracking Windows Passwords In Seconds
View Single Post
  #1  
Old 23rd Jul 03, 10:57 PM
Alpine's Avatar
Alpine Alpine is offline
Retired Crew
  
Join Date: Feb 2002
Location: Run Forest, RUN!!
Posts: 3,601
Alpine is on a distinguished road
Send a message via ICQ to Alpine Send a message via AIM to Alpine
Swiss researchers released a paper on Tuesday outlining a way to speed the cracking of alphanumeric Windows passwords, reducing the time to break such codes to an average of 13.6 seconds from 1 minute 41 seconds. The method involves using large lookup tables to match encoded passwords to the original text entered by a user, thus speeding the calculations required to break the codes. Called a time-memory trade-off, the situation means that an attacker with an abundance of computer memory can reduce the time it takes to break a secret code.

The results highlight a fact about which many security researchers have worried: Microsoft's manner for encoding passwords has certain weaknesses that make such techniques particularly effective, Philippe Oechslin, a senior research assistant and lecturer at the Cryptography and Security Laboratory of the Swiss Federal Institute of Technology in Lausanne (EPFL), wrote in an e-mail to CNET News.com. "Windows passwords are not very good," he wrote. "The problem with Windows passwords is that they do not include any random information."

Source:
http://news.com.com/2100-1009_3-5053063.html?tag=fd_top

BugTraq Archive - Cracking windows passwords in 5
seconds
http://www.securityfocus.com/archive/1/330004


LASEC - Advanced Instant NT Password Cracker (actual working web based demo):
http://lasecpc13.epfl.ch/ntcrack
Reply With Quote