Kali Linux 2018: Windows Penetration Testing by Wolf Halton

Kali Linux 2018: Windows Penetration Testing by Wolf Halton

Author:Wolf Halton
Language: eng
Format: epub
Tags: COM053000 - COMPUTERS / Security / General, COM043050 - COMPUTERS / Security / Networking, COM046000 - COMPUTERS / Operating Systems / General
Publisher: Packt Publishing
Published: 2018-11-12T07:15:13+00:00

In the preceding screenshot, we can see that we have captured the Administrator login from the \\WIN10-01 workstation. This was captured when the user logged on to the domain from the workstation. Notice this is a NTLMv2 hash, which is a salted NTLMv1 hash. A salted hash is basically a re-hashed hash. During the challenge and response part of the SMB login, a 16-bit random hash value is exchanged. The NTLMv1 56-bit hash is then hashed with this random value. This new hash, which is then transmitted to the server, is the NTLMv2 hash value. Since the salt is a random value, the captured v2 hash is non-replayable, but the good news is that programs, such as good old John the Ripper or Hashcat, can crack these hashes offline. They just can't be used in a Pass the Hash style attack.

In the following screenshot, we have the login for LAB1\rred. Again, this is from the user logging into the domain, and the non-replayable NTLMv2 hash is captured again. After both captures, you will notice, a few lines down, that Responder again captures the login, but doesn't repeat it onscreen. It is still logged to the log file as a separate hash. In the log file, you can see when the challenge and response hash changes from the non-replayable changes in the file. The actual password has not changed, but the challenge and response hashes have changed between responses:


Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
Popular ebooks
The Mikado Method by Ola Ellnestam Daniel Brolund(6795)
Sass and Compass in Action by Wynn Netherland Nathan Weizenbaum Chris Eppstein Brandon Mathis(5679)
Grails in Action by Glen Smith Peter Ledbrook(5342)
Management Strategies for the Cloud Revolution: How Cloud Computing Is Transforming Business and Why You Can't Afford to Be Left Behind by Charles Babcock(3061)
Kotlin in Action by Dmitry Jemerov(2414)
Learn Windows PowerShell in a Month of Lunches by Don Jones(1821)
The Age of Surveillance Capitalism by Shoshana Zuboff(1698)
Blockchain Basics by Daniel Drescher(1633)
MCSA Windows Server 2016 Study Guide: Exam 70-740 by William Panek(1624)
TCP IP by Todd Lammle(1585)
From CIA to APT: An Introduction to Cyber Security by Edward G. Amoroso & Matthew E. Amoroso(1546)
React Native - Building Mobile Apps with JavaScript by Novick Vladimir(1406)
The Art Of Deception by Kevin Mitnick(1262)
Applied Network Security by Arthur Salmon & Michael McLafferty & Warun Levesque(1208)
Owning Bitcoin: The Illustrated Guide to Security, Privacy, and Potential by Apodaca Richard(1188)
Serious Cryptography: A Practical Introduction to Modern Encryption by Aumasson Jean-Philippe(1127)
Blockchain: Ultimate Step By Step Guide To Understanding Blockchain Technology, Bitcoin Creation, and the future of Money (Novice to Expert) by Keizer Söze(1116)
Networking A Beginner's Guide by Bruce Hallberg(1114)
Wireless Hacking 101 by Karina Astudillo(1109)
31 Days Before Your CompTIA A+ Exams (Shanette Luellen's Library) by Benjamin Patrick Conry(1103)