HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 104 guests online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Safely Dumping Hashes from Live Domain Controllers
EH-Net
May 26, 2012, 11:20:25 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Safely Dumping Hashes from Live Domain Controllers  (Read 1383 times)
0 Members and 2 Guests are viewing this topic.
3xban
Sr. Member
****
Offline Offline

Posts: 373


View Profile
« on: November 22, 2011, 11:50:14 AM »
Pretty good article from PaulDotCom site on utilizing Volume Shadow Copies to dump hashes from a live domain controller.

http://pauldotcom.com/2011/11/safely-dumping-hashes-from-liv.html

I was thinking about doing this with a new test box to see how difficult it would be.  I imagine if you are already in the network and have already compromised it then this just might be salt in the wound for the system admins.  Still nifty though.
Logged
Certs: GCWN
Ignatius
Jr. Member
**
Offline Offline

Posts: 91


View Profile
« Reply #1 on: November 22, 2011, 12:56:37 PM »
I saw this too and hoped to get time to play around in a virtual environment.  I'll be interested to hear how you get on with it.

There are several comments in LaNMaSteR53.blog about this and, in particular, experiences of folks who have tried it out.
« Last Edit: November 22, 2011, 01:42:26 PM by Ignatius » Logged
3xban
Sr. Member
****
Offline Offline

Posts: 373


View Profile
« Reply #2 on: November 22, 2011, 02:44:42 PM »
It looks fun.  I may try to mess with it this weekend.  Thanks for the blog link!
Logged
Certs: GCWN
eth3real
Sr. Member
****
Offline Offline

Posts: 295



View Profile WWW
« Reply #3 on: November 23, 2011, 01:42:37 PM »
I'll definitely be looking into this one. Thanks 3xban! Grin
Logged
Put that in your pipe and grep it!
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.07 seconds with 19 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge: Build Security Skills to Protect & Defend

els_130x200fixed2.gif
eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.