Permalink
The others ophcrack rainbow tables are sold by Objectif Securite. Free then the Vista free then the XP special after that the Vista special and finally the XP german. If you want to crack NT hashes as found on Windows Vista by default (the LM.
Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.
Sign up Find file Copy path
Cannot retrieve contributors at this time
OPHCRACK 3.6.0 (Time-Memory-Trade-Off-Crack) |
A windows password cracker based on the faster time-memory trade-off using |
rainbow tables. |
This is an evolution of the original ophcrack 1.0 developed at EPFL |
(http://lasecwww.epfl.ch/~oechslin/projects/ophcrack) |
Ophrack 3.6.0 comes with a Qt Graphical User Interface which runs on Windows, |
Mac OS X as well as on Unix. |
GETTING and INSTALLING OPHCRACK |
Ophcrack 3.6.0 can be downloaded from sourceforge: |
http://ophcrack.sourceforge.net |
The Windows version comes with an installer that suggests automatic |
install or download of the tables. |
The linux version is a source package. It can be compiled and |
installed using the './configure', 'make' and 'make install' |
commands. The tables have to be downloaded by hand, from the URL given |
above. |
HOWTO |
This howto assumes you have already installed ophcrack 3 and downloaded the ophcrack rainbow tables you want to use. It also assumes that you understand how to use third party tools like pwdump or fgdump (http://www.foofus.net/fizzgig/) to dump the SAM of a Windows system. |
Ophcrack and the ophcrack LiveCD are available for free at the ophcrack project page (http://ophcrack.sourceforge.net/). |
Ophcrack rainbow tables are avaible at ophcrack rainbow tables page (http://ophcrack.sourceforge.net/tables.php). The XP free small, XP free fast and Vista free rainbow tables are free. The others ophcrack rainbow tables are sold by Objectif Securite. |
First step |
This step is optional but will speed up the cracking process. |
Run ophcrack and set the number of threads under the Preferences tab to the number of cores of the computer running ophcrack plus one.For example, for an old processor set the number of threads to 2, for a Core 2 Duo to 3 and for a Core 2 Quad to 5. If you change this value, you have to exit ophcrack and to restart it in order to save the change. If you don't exit and restart, the new number of threads will not be taken into account by the program. |
Second step |
This step is mandatory. |
Load hashes using the Load button. You can either enter the hash manually (Single hash option), import a text file containing hashes you created with pwdump, fgdump or similar third party tools (PWDUMP file option), extract the hashes from the SYSTEM and SAM files (Encrypted SAM option), dump the SAM from the computer ophcrack is running on (Local SAM option) or dump the SAM from a remote computer (Remote SAM option). |
For the Encrypted SAM option, the SAM is located under the Windows system32/config directory and can only be accessed for a Windows partition that is NOT running. For the Local SAM and Remote SAM options, you MUST logged in with the administrator rights on the computer you want to dump the SAM. |
Third step |
This step is optional but will speed up the cracking process. |
Delete with the Delete button every user account you are not interested in (for exemple the Guest account). You can use the Ctrl key to make multiple selection. Ctrl-a will select every loaded hash. |
Keep in mind that the time needed to crack password hashes with rainbow tables is proportional to the number of hashes loaded. With a brute force attack the cracking time is NOT dependant on the number of unsalted hashes loaded. That's why it's advisable to remove any unnecessary user account with the Delete button. |
Fourth step |
This step is mandatory. |
Install (Tables button), enable (green and yellow buttons) and sort wisely (up and down arrows) the rainbow tables your are going to use. Keep in mind that storing the rainbow tables on a fast medium like a hard disk will significantly speed up the cracking process. |
Here are a few guidelines : |
* If you want to crack LM hashes as found on Windows XP by default (the LM Hash column is never empty on the ophcrack main window), first install and enable either the XP free small (if you have less than 512MB of free RAM) or the XP free fast (if you have more than 512MB of free RAM). Do NOT enable both of them since this is generally useless and will slow down the cracking process. Then install and enable the Vista free tables set. Finally install and enable the other XP rainbow tables you may have (XP special, XP german) and Vista one (Vista special). Sort the rainbow tables with the up and down arrows the following way : first the XP free then the Vista free then the XP special after that the Vista special and finally the XP german. |
* If you want to crack NT hashes as found on Windows Vista by default (the LM Hash column is always empty on the ophcrack main window), first install and enable the Vista free tables set. Then install and enable the Vista special tables set. Disable every other XP tables sets since they are useless and slow down the cracking process. Sort the enabled rainbow tables with the up and down arrows the following way : first the Vista free then the Vista special. |
* If you want to crack a mix of LM and NT enabled hashes (some accounts have their LM column empty, others have both the LM and NT columns filled with hashes) proceed the same way as 'If you want to crack LM enabled hashes'. |
Fifth step |
This step is mandatory. |
Click on the Crack button to start the cracking process. You'll see the progress of the cracking process in the bottom boxes of the ophcrack window. When a password is found, it will be displayed in the NT Pwd field. You can then save the results of a cracking session at any time with the Save button. |
Copy lines Copy permalink
Developer(s) | Cedric Tissieres Philippe Oechslin Objectif Sécurité |
---|---|
Stable release | |
Repository | |
Written in | C++, C |
Operating system | Microsoft Windows, Linux, Mac OS X |
Available in | English |
Type | Password cracking |
License | GNU General Public License |
Website | ophcrack.sourceforge.net |
Ophcrack is a freeopen-source (GPL licensed) program that cracks Windows log-in passwords by using LM hashes through rainbow tables. The program includes the ability to import the hashes from a variety of formats, including dumping directly from the SAM files of Windows. On most computers, ophcrack can crack most passwords within a few minutes.[1]
Rainbow tables for LM hashes are provided for free by the developers. By default, ophcrack is bundled with tables that allows it to crack passwords no longer than 14 characters using only alphanumeric characters. Available for free download are four Windows XP tables and four Windows Vista tables.[2]
Objectif Sécurité has even larger tables for purchase, intended for professional use.[3] Larger rainbow tables are NTLM hash for cracking Windows Vista/Windows 7[2]
Ophcrack is also available as Live CD distributions which automate the retrieval, decryption, and cracking of passwords from a Windows system. One Live CD distribution is available for Windows XP and lower, as well as another for Windows Vista and Windows 7.[4] The Live CD distributions of ophcrack are built with SliTaz GNU/Linux.
Starting with version 2.3, Ophcrack also cracks NTLM hashes. This is necessary if the generation of the LM hash is disabled (this is default for Windows Vista), or if the password is longer than 14 characters (in which case the LM hash is not stored).
Starting with version 3.7.0, the source code has been moved from SourceForge to GitLab.[5]
See also[edit]
References[edit]
- ^'OPH Reviews'. Pcsupport.about.com. 2011-07-30. Retrieved 2012-02-21.
- ^ ab'Rainbow Tables for ophcrack'. Ophcrack.sourceforge.net. Retrieved 2012-02-21.
- ^'Objectif Sécurité. A leading Swiss company in the field of information systems security'. Objectif-securite.ch. Archived from the original on 2012-02-20. Retrieved 2012-02-21.
- ^'Download ophcrack'. Ophcrack.sourceforge.net. Retrieved 2012-02-21.
- ^'Ophcrack 3.7.0 released'. Ophcrack.sourceforge.net. 2017-03-30. Retrieved 2017-04-06.
External links[edit]
The Wikibook Reverse Engineering has a page on the topic of: Cracking Windows XP Passwords |
- Ophcrack Online Demo - form to submit hashes and instantly crack passwords
- Ophcrack no table found - how to fix if Ophcrack says 'no tables found'.
- OPHCRACK (the time-memory-trade-off-cracker) - École Polytechnique Fédérale de Lausanne
Retrieved from 'https://en.wikipedia.org/w/index.php?title=Ophcrack&oldid=917332777'