Sunday, February 24, 2008

Two ways to get around passwords - Windows

Lance Muller has a really good post on ways to log on to a windows box without a password:

I discovered two additional ways to get around passwords when the passwords are either too difficult for rainbow tables or when there is only a LM password and a brute-force attack will take too long. The techniques I am going to describe will not recover the password. It will merely let you login to the system with a specific user account. Getting access to the system using these techniques will not let you access any files that are protected via EFS in Windows XP or Vista since the password is used as part of the encryption/decryption process.

Lance's blog can be found here.

Tuesday, February 5, 2008

Interesting tool - pdump.exe

Toni at Teamfurry.com has a new tool that has some interesting functionality, it dumps process memory, but it also saves each allocated memory region to a separate file.

I've played with it a little bit and it seems like it has potential.

You can read the post and download the file here.