PDA

View Full Version : Oftcrack - a testamonial

phnuff
4th Aug 2010, 13:06
While on holiday, I found Phnufflet accessing my Windows 7 Netbook without permission. I quickly put password on my ID which had admin rights and created her an ID of her own which had less rights in order to stop her downloading/installing crap. I was angry with her at the time and because of this, managed to forget the password which I had assigned to my ID. I therefore had a machine with no access to admin rights !!!!

Enter the free utility Oftcrack which I downloaded to another machine on my return home and burned a boot disk with. Within about 5 seconds of being asked to find the password to my id, it did so and I was back in AND this was a 10 character, non trivial password

A great utility which despite some comments to the contrary, works well with Windows 7
mad_jock
4th Aug 2010, 14:18
Yep which is why all machines are totally insecure if you can get your hands on them.
Mac the Knife
5th Aug 2010, 05:43
You mean Ophcrack

Ophcrack (http://ophcrack.sourceforge.net/)

:ok:
phnuff
5th Aug 2010, 12:51
I do !! Who would expect someone to misplell something !!!
mixture
7th Aug 2010, 11:33
phnuff,

More importantly perhaps..... and I quote from the Ophcrack website :

Ophcrack is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method

You do realise you were lucky you use such insecure passwords, don't you ?

This thing is not a magic tool, it uses rainbow tables.

Google the term. Then review the way in which you generate your passwords, especially if you use the same method for online banking etc.
Ancient Observer
7th Aug 2010, 13:59
mixture.
So I did.
Now my brain hurts, and I wish I hadn't bothered.

It's back to either Janet and John, or JB for me.
Too much brain required in here.
mixture
7th Aug 2010, 15:58
AO,

Yeah, that Wikipedia article is a bit long winded isn't it ! :ok:

No idea why they call them rainbow tables, and no idea why it takes Wikipedia so many words to explain what one is !

Its a very simple concept really... they are used in brute force attacks, as an expanded form of dictionary attack. The idea behind a dictionary attack should be pretty much self explanatory. :cool:
Gertrude the Wombat
7th Aug 2010, 16:01
I quickly put password on my ID which had admin rights and created her an ID of her own which had less rights in order to stop her downloading/installing crap.
I run my network in similar fashion ... but if I were ever to forget my password I could just ask my daughter, it didn't seem to take her much effort to work it out.