The Ethical Hacker Network - [Article]-Tutorial: Rainbow Tables and RainbowCrack

bob677890

Newbie

Offline

Posts: 3

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #15 on: February 13, 2007, 03:51:00 PM »

I'm still not understanding how to effectively use the table indexing feature. I would like to generate NTLM hashes for 1 to 10 characters, mixedalpha-numeric-symbol14, which will take quite some time on a single machine. However, I have 4 2.0GHz machines that I can split up this processing on... how do determine the probability success rate when more than an index of zero is used? Could someone provide example rtgen commands to run on each of the four machines I have available?

Much thanks.


	Logged

slimjim100

EH-Net Columnist
Sr. Member

Offline

Posts: 385

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #16 on: February 13, 2007, 08:19:19 PM »

I will take a quick stab at this one...

Ok you would build a script to set the index 0 for computer #1, then you would have the same script but the index would now be set to 1 for computer #2, and so on. If you plan on using winrtgen.exe from www.oxid.it you can modify the "Tables.lst" file on each PC so that the different computers only make the tables you want. This will let you edit out the tables you are making on other computers.

Example:

Tables.lst
------------------------------------------------------------------------------
ntlm_all#1-10_0_240000x40000000000000_oxid#000.rt;
ntlm_all#1-10_0_240000x40000000000000_oxid#001.rt;
ntlm_all#1-10_0_240000x40000000000000_oxid#002.rt;
ntlm_all#1-10_0_240000x40000000000000_oxid#003.rt;
-------------------------------------------------------------------------------
You see 4 tables if you wanted to use 4 computers to make this set you could just modify the Tables.lst to show one table per list per PC and when you are done you would have the set you wanted to make.

Not sure if what I just typed made since... If you understand it cool if not post below and I will try to explain it again.

Brian


	Logged

CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP

bob677890

Newbie

Offline

Posts: 3

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #17 on: February 21, 2007, 12:53:00 PM »

Thanks for the reply.

I understand how to index the tables, what I don't understand is how to determine the probability of success when using indexes.

For instance, the Hak5 NTLM tables (http://www.hak5.org/wiki/Community_Rainbow_Tables/Assignment_List) have 25 tables, with 22 chains per table. When using the criteria provided (ntlm mixalpha-numeric-all-space 1 7 0 10000 40000000 0), WinRTGen benchmarks a ~11% probability success rate, yet Hak5 claims ~95% success probability. How is that probability determined?

Thanks.


« Last Edit: February 21, 2007, 03:40:03 PM by bob677890 »	Logged

bob677890

Newbie

Offline

Posts: 3

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #18 on: February 21, 2007, 03:42:15 PM »

Nevermind, I think this might be what I was looking for...

http://www.antsight.com/zsl/rainbowcrack/configurations.htm


	Logged

Manjusri

Guest

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #19 on: December 18, 2007, 12:47:11 AM »

I am confused, on 2 counts.

1- Safe ALT-XXX passcode entries, ie- no LM hash, are these 3 or 4 digit numbers? The texts mentions both, and the table also seems ambiguous.

2- Can't the function which produces the hash be found in the code and unwound to give a new function, such that one could enter the hash and return the original passcode?

thanks, Glenn


	Logged

JJJHS13

Newbie

Offline

Posts: 16

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #20 on: December 20, 2007, 08:13:18 PM »

How do i get the software for linux? Im not a big fan of wine


	Logged

LSOChris

Guest

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #21 on: December 20, 2007, 08:17:11 PM »

download the source and compile

http://www.antsight.com/zsl/rainbowcrack/rainbowcrack-1.2-src.zip


	Logged

JJJHS13

Newbie

Offline

Posts: 16

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #22 on: December 20, 2007, 08:34:45 PM »

Sorry im new with linux, i dont know where the compiler is on this weird thing


	Logged

LSOChris

Guest

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #23 on: December 20, 2007, 09:25:13 PM »

Quote from: JJJHS13 on December 20, 2007, 08:34:45 PM

Sorry im new with linux, i dont know where the compiler is on this weird thing

then you need to go over to LearnSecurityOnline.com

http://www.learnsecurityonline.com

register an account, then go to core competencies --> operating systems --> and read all the linux articles.


	Logged

LSOChris

Guest

Re: [Article]-Tutorial: Rainbow Tables and RainbowCrack

« Reply #24 on: December 20, 2007, 09:31:19 PM »

Quote from: Manjusri on December 18, 2007, 12:47:11 AM

I am confused, on 2 counts.

1- Safe ALT-XXX passcode entries, ie- no LM hash, are these 3 or 4 digit numbers? The texts mentions both, and the table also seems ambiguous.

yes 3 or four digits can be used
try: http://www.castlecops.com/a5842-Passwords_Staying_Safe.html

Quote from: Manjusri

2- Can't the function which produces the hash be found in the code and unwound to give a new function, such that one could enter the hash and return the original passcode?

not really, the idea by hashing is that its really easy one way and really hard the other. doing some googling on password hashes and hashing might lead you to some reading on why that wont work.


	Logged

Pages: 1 [2] Go Up

« previous next »