Using local password-attack tools
In recipe, we will see a few tools both for Windows and Linux that will perform password-guessing attacks. For Linux, we will use a tool called sucrack, and for we will use fgdump and pwdump. Sucrack is used to crack passwords via the su command, which is a multithreaded tool. SU is a tool in Linux that allows you to run using a user. But first let us understand these tools: Sucrack is a password cracker. Fgdump and pwdump are tools that dump the SAM hashes from LSASS memory. JTR (John the Ripper) is a for SAM hashes. Windows Credentials Editor (WCE) is a tool to list logon sessions and add, change, list, and delete associated credentials (for example, LM/NT hashes, plaintext passwords, and Kerberos tickets). Let us begin with the practical approach.
Getting ready
To demonstrate this, we will require a Windows XP machine and our Kali Linux distro. The reader might also need to port PwDump.exe and FgDump.exe from Kali Linux to Windows XP.
