Recovering Windows 2003 domain passwords

Tuesday, February 21. 2006

Recovering Windows 2003 domain passwords

Today I had to get a listing of all my user's logins and passwords to my Windows 2003 domain. You'd think it would be an easy affair with Windows allowing you to print a report with that information; but that's not the case. Windows encrypts all passwords so you are unable to view them without cracking the hashes using dictionary or brute force "attacks."

There are several programs that allow you to crack your domain's passwords although my personal favorite (easy to use and fast) is @stake's l0phtcrack. Recovering passwords is as easy as selecting a remote server, entering the administrator's login and password then letting l0phtcrack do its thing. Once your passwords are recovered for each login you can easily output them as a report with various ways to organize the data for printing.

Until Microsoft decides to give us IT guys a program to output usernames/passwords as a report @stake's l0phtcrack is the next best thing.

Posted by Chris in Security at 14:35 | Comments (0) | Trackbacks (0)

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

No comments

Add Comment

Name
Email
Homepage
In reply to
Comment	Enclosing asterisks marks text as bold (word), underscore are made via _word_. Standard emoticons like :-) and ;-) are converted to images. E-Mail addresses will not be displayed and will only be used for E-Mail notifications To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry