NEW: We have a Discord server now. Click here to go there now!

NOTE: Why not use our List Manager to crack your lists? Its easy and enables better management.

NOTE: When cracking WPA/WPA2 passwords, make sure you check gpuhash.me first incase it's already been processed.

Home - Windows Hashes - SAM File extraction


7 Results - Page 1 of 1 -
1
Author Message
Avatar
TigerBook29

Status: Cracker
Joined: Sat, 12 Jan 2019
Posts: 101
Team:
Reputation: 111 Reputation
Offline
Wed, 09 Oct 2019 @ 19:02:01

I have read the thread, in the General Discussion section, on how to manually save the SAM and SYSTEM file and that is of no use to me because I already have the files saved, I'm confused as to how I go abouts extracting the ntlm hashes from the SAM file, without using Cain and Abel. All I need is the standalone ntlm hashes, which I can then crack or somebody else could help crack. (+rep)

I believe this is the right section to post in.

Thank you!


BTC: 1FFP5BE9Uw5KWFuqd2gqAmdATQJukep5BT
+Rep, if I helped! :)

http://wordlist-warehouse.rf.gd/

Avatar
team_cyclone

Status: Cracker
Joined: Sun, 25 Aug 2019
Posts: 392
Team:
Reputation: 362 Reputation
Online
Wed, 09 Oct 2019 @ 19:19:33

If you already have the SAM and SYSTEM files from windows...

on linux: (from terminal)

1. cd to directory of your SAM & SYSTEM files
2. make sure samdump2 is installed sudo apt install samdump2
3. run this command from terminal: samdump2 SYSTEM SAM
4. copy / paste extracted NTLM hashes
5. profit!

***edit***

example output from samdump2 (username:password)

administrator:500:aad3b435b51404eeaad3b435b51404ee:8846f7eaee8fb117ad06bdd830b7586c:::


Sysadmin by day | Hash cracker by night | GPU: 120 GH/s
ETH: 0xc6016a2D04031f9665761E4Db2363Cceaa4146A3
BTC: 1Fg38ik9xBFCQiVdAi9ztobJ9rGUYyefR5
+rep

Avatar
TigerBook29

Status: Cracker
Joined: Sat, 12 Jan 2019
Posts: 101
Team:
Reputation: 111 Reputation
Offline
Wed, 09 Oct 2019 @ 19:34:30

Thank you so much, this really helps!


BTC: 1FFP5BE9Uw5KWFuqd2gqAmdATQJukep5BT
+Rep, if I helped! :)

http://wordlist-warehouse.rf.gd/

Avatar
TigerBook29

Status: Cracker
Joined: Sat, 12 Jan 2019
Posts: 101
Team:
Reputation: 111 Reputation
Offline
Wed, 09 Oct 2019 @ 20:06:56

Not to bother you but what does this mean? I am stupid, when it comes to linux.


BTC: 1FFP5BE9Uw5KWFuqd2gqAmdATQJukep5BT
+Rep, if I helped! :)

http://wordlist-warehouse.rf.gd/

Attachments: Login to view attachments.
Avatar
dodoaska

Status: n/a
Joined: Wed, 20 Jun 2018
Posts: 72
Team:
Reputation: -7 Reputation
Online
Thu, 10 Oct 2019 @ 07:17:42

and for windows ?


Avatar
xut

Status: n/a
Joined: Sat, 18 May 2019
Posts: 108
Team:
Reputation: 13 Reputation
Online
Thu, 10 Oct 2019 @ 19:08:24

http://www.foofus.net/fizzgig/fgdump/fgdump-2.1.0-exeonly.zip

just use fgdump (1 simple binary) to extract NTLM hashes from running windows system (if you don't know how to use linux)

or for a more complicated and powerful tool search for mimikatz (for windows also)

note : https://pentestlab.blog/tag/ntds-dit/ worth reading and studying.


Avatar
TigerBook29

Status: Cracker
Joined: Sat, 12 Jan 2019
Posts: 101
Team:
Reputation: 111 Reputation
Offline
Sat, 12 Oct 2019 @ 11:54:56

Solved. Thank you all!


BTC: 1FFP5BE9Uw5KWFuqd2gqAmdATQJukep5BT
+Rep, if I helped! :)

http://wordlist-warehouse.rf.gd/


7 Results - Page 1 of 1 -
1

We have a total of 211757 messages in 25982 topics.
We have a total of 22984 registered users.
Our newest registered member is OwoO0o1.