The Ethical Hacker Network - XP Password Cracking using IEEE-1394

Latest Additions

Who's Online

EH-Net Donations

Google Ads

EH-Net News Feeds

Latest Additions

Book Recommendations

Ethical Hacker Community Forums > Resources > Tools (Moderator: don) > XP Password Cracking using IEEE-1394 - Which is the tool?

Pages: [1] Go Down

« previous next »

	Author	Topic: XP Password Cracking using IEEE-1394 - Which is the tool? (Read 4046 times)
0 Members and 1 Guest are viewing this topic.

Manu Zacharia (-M-)

Full Member

Offline

Posts: 195

XP Password Cracking using IEEE-1394 - Which is the tool?

« on: March 08, 2008, 09:00:57 AM »

Hi All,

I was listening to the TechTarget Weekly Podcast, where they were talking about a password cracking tool for Windows XP using the IEEE-1394 port. Do you have any idea about this tool. They say that its a linux based tool.

I Could find the following link.

http://freerepublic.com/focus/f-chat/1981136/posts

Any more links or info do we have?


	Logged

Manu Zacharia
Certified ISO 27001:2005 (Information Security Management System) Lead Auditor
Promote the Information Security Day
Visit - http://www.informationsecurityday.com

eth3real

Full Member

Offline

Posts: 130

Re: XP Password Cracking using IEEE-1394 - Which is the tool?

« Reply #1 on: March 08, 2008, 11:50:36 AM »

I saw this on Hackszine.com a few days ago.
http://www.hackszine.com/blog/archive/2008/03/ram_dump_over_firewire.html

It looks like the name of the tool is winlockpwn. I haven't got a chance to try it out, yet, since I have no PCs with FireWire.
Here is the link to the project site.
http://storm.net.nz/projects/16


	Logged

Jess Hires
MCP, C|EH

ChrisG

EH-Net Columnist
Hero Member

Offline

Posts: 1042

Re: XP Password Cracking using IEEE-1394 - Which is the tool?

« Reply #2 on: March 08, 2008, 08:45:58 PM »

yup thats the right link. getting the libraries installed is straightforward but i havent been able to get it to work on ubuntu, some sort of python memory read issue.


	Logged

...tests i took go here...

http://carnal0wnage.blogspot.com/

eth3real

Full Member

Offline

Posts: 130

Re: XP Password Cracking using IEEE-1394 - Which is the tool?

« Reply #3 on: March 09, 2008, 12:36:58 PM »

This is something I really have to try out soon.

My laptop at work has a FireWire port, but I disabled it a long time ago since I don't use it. It's time for me to dig up a cable and test some of the workstations around the office. Cool

One could also get a PCMCIA IEE-1394 card for their laptop to try this out.

I would be curious to see if this will work with a Windows laptop running andLinux (see http://www.andlinux.org/). I will try this out some time this week.


	Logged

Jess Hires
MCP, C|EH

eth3real

Full Member

Offline

Posts: 130

Re: XP Password Cracking using IEEE-1394 - Which is the tool?

« Reply #4 on: May 22, 2008, 02:37:35 AM »

I was just curious if anybody has been able to try this out, or if this type of vulnerability is being addressed in pentests, etc., or if Microsoft has corrected this problem yet.

It has been a dead topic for a while, but I still think it shows some potential. I haven't yet been able to try it myself, though.


	Logged

Jess Hires
MCP, C|EH

ChrisG

EH-Net Columnist
Hero Member

Offline

Posts: 1042

Re: XP Password Cracking using IEEE-1394 - Which is the tool?

« Reply #5 on: May 22, 2008, 10:33:31 AM »

its regarded as a feature not a vulnerability. there are some tutorials out there using helix to get this going and someone got it going on BT3 as well.


	Logged

...tests i took go here...

http://carnal0wnage.blogspot.com/

Pages: [1] Go Up

« previous next »

Jump to:

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!

Recent Forum Topics

Network Pen Testing : Firecat 1.4 (1) by toggmeister
Network Pen Testing : An Ethical Hacker must have these skills... (44) by Lancewang
Other : LZMA Decompression Help (5) by blueback00
Career Central : Where do I start. (1) by vijay2
Forensics : The Julie Amero Case: A Dangerous Farce (2) by pseud0
News from the Outside World : [TheRegister] Apple tells Mac users: Get anti-virus (0) by jimbob
Programming : not static? (7) by RoNNie_13
Calendar Of Events : BOSS Conference 2009 (0) by don
Calendar Of Events : CSI SX 2009 (0) by don
Calendar Of Events : Security OPUS Spring 2009 (0) by don
Calendar Of Events : CanSecWest 2009 (0) by don
Calendar Of Events : Carolinacon 2009 (0) by don
Calendar Of Events : Black Hat USA 2009 (0) by don
Calendar Of Events : Black Hat Europe 2009 (0) by don
Calendar Of Events : Black Hat DC 2009 (0) by don
Calendar Of Events : Cyber Warfare 2009 (0) by don
Calendar Of Events : White Hat Ball 2009 (0) by don
Calendar Of Events : RSA Conference 2009 (0) by don
Calendar Of Events : SOURCE Boston 2009 (0) by don
Calendar Of Events : Notacon 6 (0) by don
Calendar Of Events : ShmooCon 2009 (0) by don
Calendar Of Events : SANS Pen Testing Summit 2009 (0) by don
Calendar Of Events : SANS 2009 (0) by don
Calendar Of Events : SANS Security West 2009 (0) by don
Calendar Of Events : SANS CDI 2008 (0) by don
Other : Early Details of Vista, Server 2008 SP2 Due in April (0) by don
Career Central : 7 Tips for Career Growth in Tight Times (0) by don
Other : Do we or Dont we... (7) by pseud0
Special Events : Pen Testing Perfect Storm Webcast Series: Part 2 - Teaser (6) by don
News from the Outside World : Would you trade your privacy for a smartphone? (5) by jason
Physical Security : Key Duplication from Photos (5) by jason
Career Central : Confused about future (8) by Artful Dodger
Tools : Cain & Abel v4.9.24 Released (1) by RoleReversal
CEH - Certified Ethical Hacker : MSS from EC-Council? (13) by shednik
Book Reviews : Network Intrusion Alert (1) by don
Hardware : Lenovo Introduces Remote Disable Feature for Laptops (16) by jason
Wireless : Jamming by babycam (6) by jason
Other : What kind of lab, machines you have for your security testing? (6) by MadmanTM
Wireless : help wid wifi !!!! (1) by jason
Malware : Military Bans Removable Media (10) by ChrisG

Support EH-Net by Buying all of your Amazon items using the search bar above. Try CBT Nuggets Free!

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!