» Password

Enumerate MSN user accounts with MSNRecover

carrumba — Sun, 21 Feb 2010 21:01:41 +0000


Tool name :	MSNRecover version 0.1

Description :	MSNRecover searches inside the Microsoft Credential management system for MSN authentication data. If such an entry was found targetname, comments, username and password are printed on the display.

Tested on :	Windows XP

Feedback :	In case you encounter any problems with the tool, you have suggestions to improve it, or you tested it with a Windows version i’ve not yet tested please drop me an email.

Downloads :	Binary \| Source

RockYou Hacker – 30% of Sites Store Plain Text Passwords

carrumba — Thu, 17 Dec 2009 21:03:25 +0000

In a chat lasting over an hour, we got to talk to a person claiming to be the infamous hacker behind RockYou’s latest data security woes.

While he claimed to have no animosity toward users, he had one clear message for websites: Take better care of your customers’ data. RockYou isn’t the only hacked site storing plain text login information, either.
What Happened

To bring us all up to date, here’s the gist of the story so far: The hacker, who we’ll call Tom (not his real name) for brevity’s sake, tells us that he used an SQL injection to gain direct access to RockYou’s database, where he found login information for more than 32 million user accounts. The data was all in plain text and contained third-party site logins, as well.

Tom sat on this information for a while. Although he’s posted about similar hacks in the past, he also claims to have exposed the same vulnerabilities and gained access to the same kind of data for many major U.S. sites. Tom wouldn’t reveal which sites he’d hacked, but he did say that he has no intention of using or publishing the data he’s unearthed.

But yesterday, incensed by this warning from an Internet security company and RockYou’s claims that only some accounts had been compromised by the security breach, Tom posted about the hack on his blog.

We (along with several of our peers) were tipped off to the situation via Twitter, and TechCrunch has since written two posts about the data breach.

Service cracks wireless passwords from the cloud 135 million words in 20 minutes

ruben — Wed, 09 Dec 2009 05:47:33 +0000

The WPA Cracker is a cloud-based service that accesses a 400-CPU cluster. For $34, it can run a password against all 135 million entries in about 20 minutes. Those willing to wait 40 minutes can pay $17 to access the system at half mode.

In addition to operating in the cloud, the service is also notable because its dictionary has been set up specifically for cracking Wi-Fi Protected Access passwords. While Windows, Unix and other systems allow short passwords, WPA pass codes must contain a minimum of eight characters. Its entries use a variety of words, common phrases and “elite speak” that have been compiled with WPA networks in mind.

Full article here.

Web service automates WordPress password cracking

carrumba — Tue, 01 Dec 2009 17:08:23 +0000

Hackers have developed a distributed WordPress admin account cracking scheme that poses a severe risk for the security of blogs whose owners select insecure passwords.

PHP scripts located on a virtual server run bruteforce (password guessing) attacks on targeted sites. Many sites can be attacked at the same time by the system, with results written into an associated database.

The SANS Institute’s Internet Storm Centre notes that brute force attacks against WordPress are commonplace. The distributed nature of the latest attack marks an evolution towards blog hacking as a web service, however, thus marking it out from the crowd.

“While this particular version is relatively simple, the power behind the script and the MySQL database allows the attacker to distribute the attacks not only by sites, but also by passwords tried as well,” ISC security watcher Bojan Zdrnja writes.

Blog administrators are advised to use strong (hard to guess) passwords and to limiting access by IP address as a security precaution to prevent getting pwned.

Find the original article here.

Guessing FTP passwords

carrumba — Sun, 29 Nov 2009 07:54:25 +0000

According the latest Microsoft’s researches guessing FTP passwords is still a valuable way to harvest account information. People still forget or ignore to change their default password or change it that way attackers can easily guess.

Microsoft releases password attack data

Microsoft released data collected from an FTP-server honeypot, showing that attempts to guess passwords continue to focus on the low-hanging fruit: passwords with an average length of eight characters, with “password” and “123456″ being the most common.

The data is part of a project to monitor attacks that everyday users might encounter on a regular basis. Most of the attacks attempted to log into the administrator account on English and French computers — “Administrator” and “Administrateur” were, by far, the two most popular usernames — using a variety of passwords. The attackers were typically compromised computer that were part of a botnet, Microsoft researchers stated on the company’s Malware Protection Center blog.

“You should take care of what user name and password you’re choosing,” the researchers wrote. “If your account has no limit on the number of login attempts, then knowing the user name is like having half the job done.”

In one case, an attacker made more than 400,000 attempts to guess a user name password combination.

The most common passwords were password, 123456, #!comment:, changeme and an expletive.

Microsoft recommended that users create passwords consisting of letters, numbers and special characters using a combination of lower and upper case. The average length of the password attacks was eight characters, so users should focus on longer passwords, the researchers stated.

You find the original article here.

Firefox password recovery with FFPasswordRecovery

carrumba — Tue, 28 Jul 2009 16:02:44 +0000


Tool name :	FFPasswordRecovery 0.2

Description :	FFPasswordRecovery is a tool to extract and decrypt the Firefox authentication and auto complete information.

Tested on :	Windows XP, Firefox 3.5.7

Feedback :	In case you encounter any problems with the tool, you have suggestions to improve it, or you tested it with a Windows version i’ve not yet tested please drop me an email.

Downloads :	Version 0.1 – Binary \| Source
	Version 0.2 – Binary \| Source

Screen shots :

THC Hydra

carrumba — Sun, 31 May 2009 08:41:11 +0000


Tool name :	THC Hydra

Description :	THC Hydra is a fast network authentication cracker which supports many different services. When you need to brute force crack a remote authentication service, Hydra is often the tool of choice. It can perform rapid dictionary attacks against more then 30 protocols, including telnet, ftp, http, https, smb, several databases, and much more.

Homepage :	freeworld.thc.org

Cain & Abel

carrumba — Sun, 24 May 2009 14:42:07 +0000


Tool name :	Cain & Abel

Description :	UNIX users often smugly assert that the best free security tools support their platform first, and Windows ports are often an afterthought. They are usually right, but Cain & Abel is a glaring exception. This Windows-only password recovery tool handles an enormous variety of tasks. It can recover passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols.

Homepage :	www.oxid.it

Internet Explorer Password recovery

carrumba — Tue, 19 May 2009 14:23:00 +0000

Tool name :

IEPasswordRecovery 0.1

Description :

IEPasswordRecovery searches inside Microsofts protected storage area for Internet Explorer auto completion (authentication input fields in a page) and HTTP authentication entries. If such an entry was found the hostname, username and password are printed on the display.
Only Internet Explorer up to version 6 use the protected storage to keep sensitive data. From Internet Explorer 7 on the account data is kept at an other place in the registry and in the file system. Unfortunately I had not yet the time to implement account data extraction for IE 7. This little shortcoming will be fixed in a later release.

Tested on :

Windows XP, IE 6

Feedback :

In case you encounter any problems with the tool, you have suggestions to improve it, or you tested it with a Windows version i’ve not yet tested please drop me an email.

Downloads :

Binary | Source

Screen shots :

John the ripper

carrumba — Sun, 17 May 2009 12:13:55 +0000


Tool name :	John the ripper

Description :	John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches.

Homepage :	www.openwall.com