Than you for the link watching it and yes the type of job I would like Thank you again for the link.

Hi everyone been doing some researching on decrypting Vista password and I got the say yes its possible only as IronGeek mention, if it's a weak password yes it can be cracked. I viewed and followed his Tutorial, I give a lot of credit to IronGeek’s Cracking Vista Password Beta tut on his site, First I Boot into my system which has Vista Ultimate with Ophcrack boot CD and, there are Two Accounts that has my Daughters password and mine. Now just to pose a bet on my child's password to crack it, she is only 7 yrs old, and her password contains 10 characters letters and Numbers. I told her to please tell me her password because I will do some auditing on both passwords. I asked her and she declined hahahah, but with a bit of social engineering that helped a bit . Well on to the Tut Popped in a thumb drive into my system booted up with the latest Ophcrack CD once it populated all accounts, It stated that all LM hashes are empty please use Nthashes Table to Crack them, well here is the part I found very interesting since we cannot use rainbow tables through OPhcrack why not save the hashes into a text file. First you go To--->Load---->from encrypted SAM--->File system--->mnt--->hda1 (can be a different letter name)--->WINDOWS\system32\config---->click on open
Now all accounts will show up here with no notification if they are LM or NT but you can click on tables, but remember Vista hashes all accounts to the NTHash so let's go and save --->Save As (here is when your external thumb drive comes into use) go to--->System Files--->mnt--->sdal removable. Make sure you do see the file save into the small drive. Now the fun part begins logout of Ophcrack boot backup into Vista open up Cain and Abel go to--->cracker Tab-->left window-->LM&NTLM-->click on the white area -->click the plus sign-->Import Hashes from a text file-->G drive(can be a different letter)--->look for file name (save.oph )click on shift+*.*
and the accounts should populate, there you will see LmHashes beginning with “AAD” this is the blank hashes the right hashes are your passwords hashed in NTHash.Now I have been doing a lot of random collection of wordlists and Dictionary out into the internet some I have had great success, but I like to keep this a secret cause I like doing things very ethical so that’s where you would do your homework Google it! hahaha you can use Rainbow tables they would have to be NTLM Tables. Continue Right Click and Select all users’ right click and Select-->Dictionary Attack NTLM Hashes-->select your wordlists or you can use Cain’s wordlist and then run. It took about 20-30mins to crack my Kids password her password is "kissing???" Cannot display her numbers at the end, that is our secret hahahah , but I was amazed in less of time it took to crack her password fully. I continued on with my password it contains 1uppercase letter, 2 lowercase letters, 3 numbers & one special character and am still trying to crack it with no success , well this is my experience using this method, I hope anyone reading this will do this ethically and if you need further info go to Irongeeks website you can see what I trying to interpret in his tutorial .I hope this was very informal, and always use different characters in the mix of your password.

Thanks Don never really paid big attention to these small drives the U3 but remember all do this hacking things ethical.

I was thinking about your missing tool all I can think of is Google Desktop Search, read this article http://www.informationweek.com/story/showArticle.jhtml?articleID=49901790&tid=5979

and for your thumb drive-

http://www.jakeludington.com/ask_jake/20040702_disabling_autoplay.html

l8r and good luck.

Hi there about your thumb drive, you need to specify which OS Win 98,2kp ,XP or VIsta, am sure its Vista it does the driver loading thing.Now is this the OS in questiong.

To Added to your toolkit check out this site it has been recommended for most Computer Forensics and its free and stand alone tools runs under windows http://www.nirsoft.net/ Good Luck

Hi Don I know this post is old but I have been fooling around with FSCrack and with JTR current version and I have to admitt JTR is the fastest cracker I loaded about 500 hashes and left me with only 65 hashes to crack that is way fast in a micro second I was very surprise my Gosh JTR is a MF cracker WOW  anyway been studying hard I went ahead and purchased PrepLogic's CEH special Audio Cd quiz and learn and I converted to mp3 but the tracks had not track name so I went ahead and listened to the TOC and named each track but other than that been studying and learning the tools for hacking in a VM also my rainbowtable is growing big and cracking large passwords as I have special permission to audit our company's passwords its  been great to be an admin to an extreme l8r Don.

Thank you Don I just finished my 5th table size is getting bigger lol

Hi everyone been studying ethical hacking module 5 system hacking been 2 months experimenting with rainbow tables yes I could easily download them but I rather create my own which I did with some excellent results. I do want to share how I did this first I downloaded Cain and Abel the most current version I asked my co- partner administrator if I can have the liberty of cracking his password he was fine with that I used tool called  Pwdump X v 1.1 remember you have to have admin's right ,typed in net view saw his name of his machine pinged his name to get his IPAddress ,or I could of used angry IP, if he has his firewall enable you can enum to pass that got his hash from remote. Entered it into Cain and Abel now I used a combination to crack his password I downloaded Ophcrack 700mb tables and fed it into Cain& Abel with just very little success the last part of his password was cracked so I needed to crack the first part, well I started to build this table with a success of 98% code is lm_alpha-numeric-symbol14#1-7_0_8000x2500000 I started to play around with the chains so with my very first table BINGO I cracked it all results H!J0DEPUTA this table is to be 20 tables so am so far as 5 tables 15 more to go by the way his password translated
aka Son of a Bitch but in Spanish  Now to save your work go into Cain and Abel directory look for file LMNT.LST open with notepad and save to whatever device or floppy in txt format. I thank everyone here in this site which engouraged me into researching very much and understanding more into hashing my password is very secure it consists of 16 characters it is a NTLM hash FYI Vista is very hard to crack, but I been reading elcomsoft alternative way it just takes time, in the near future that someone will find an easy way ,who knows so far it’s very secure. Thank you all hope this will give others how important it is to use many special characters to avoid hacker ‘s to crack your password  Amen LOL.

  Thanks I have them all downloaded to listen into my New Zune. I also took the libery to download most of the video's that are at youtube just type hacking or computer forensic and your sure to get some cool results anyway have a nice Thanks Giving Don l8r.

I'm glad I entered hope I win lol, but am glad they took the action to request important parts of the exam, because everyday is a different evolving issue in the IT world and in the security profession, and it also reinforces our new security professional. If I was asked to take revision 2008 I would do it all over same as if I was a Ethical Hacker or a Computer Forensic, Its like being a doctor . You have to know your stuff and be on top of the bad guys we all have a good and bad side so we have to watch ourself’s also anyway Don back to my studying that’s all I do lol...and its fun. 

Hi everyone excellent intro for backtrack Teaser I already want it thank you don for sharing that and the cool background music lol, by the way been very busy studying ethical hacking I feel its going to take me about a year or two to trully become a hacker but in a ethical one,hope all is well have not come back to the site for about a month been busy at home and work, but am doing fine, in my spare time I have been experimenting at home in a vmware enviroment using  server 2003 and two unpatched system and doing a lot of goolge searching towards scanning tools one I found was namp in different flavors meaning the gui vs cmd prompt I like nmap I found a cool tutorial guide at http://www.nmap-tutorial.com/pdf/nmap-tutorial.pdf very helpfull anyway hope all will benfit adios amigos. 

Hi there I also found a website that everyone here can benefit you can head to these links as followed -

http://www.hackthissite.org/user/create/finish/

http://www.owasp.org/index.php/Category:OWASP_WebGoat_Project

The one I’am using is from OWASP Web Goat Project but am running this in a VMware environment make sure when you run the Bat file that you are not connected to the internet  if you do you will leave your system venerable, when you head to Goats web page make sure to use the web link in case sensitive ,remember read and learn in ethical good luck.

Thank you All I will see if I can find someone online, for now I will teach myself I don’t have the intensions to harm anyone but I will be hacking my own enviroment, thank you again it is the reason I love doing things ethical especially my goals to becoming a computer forensics’.

Hi everyone I just placed an order on this book: Certified Ethical Hacker Exam Prep 2 By Michael C. Gregg
 I been hearing a lot of great reviews about this book, question for all I will be setting up VMware workstation lab and planning to install as host XP and Vista on a desktop, should I patch them and install antivirus on this two host, or leave them both unpatched if anyone please I would appreciated it thank you.

PS if anyone has a gmail account could purchase this book through buy.com with google check out for $22 bucks sweet