Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs  Black Box Testing  Vulnerability Assessment  Vulnerability Scanner SecuriTeam™ in Your Inbox   E-mail this article to a friend New vulnerability? New tool? Tell us	Pass-The-Hash Toolkit 25 Jan. 2008     Credit: The information has been provided by Hernan Ochoa. To keep updated with the tool visit the project's homepage at: http://oss.coresecurity.com/projects/pshtoolkit.htm    Details Audit your web server for security holes - see what the hackers see. Sign up for a scan today - risk free! The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions maintained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in through Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows). Direct download links: source code: http://oss.coresecurity.com/pshtoolkit/release/1.2/pshtoolkit_v1.2_src.tgz Binaries: http://oss.coresecurity.com/pshtoolkit/release/1.2/pshtoolkit_v1.2.tgz  Comments: Subject:   Date:  From:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles SSL Capable NetCat ProxyStrike - Active Web Application Proxy McGrew Security RAM Dumper Creddump - Extracts Credentials from Windows Registry Hives w3af - Web Application Attack and Audit Framework Browser DOM Checker SQLninja - SQL Injection Toolkit Pass-The-Hash Toolkit Rainmaker - Command Line Pseudo Random Number Generator SQID - SQL Injection Digger Nipper - Network Infrastructure Parser PortBunny - Linux-kernel-based Port Scanner httprecon - Advanced Web Server Fingerprinting The Cookie Tools EchoVNC - Firewall Friendly Remote Desktop  Featured Articles Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability Adobe Acrobat Javascript PDF Security Feature Bypass and Memory Corruption Vulnerabilities Multiple Vendor rdesktop Vulnerabilities Wonderware SuiteLink Denial of Service Vulnerability PHP Multibyte Shell Command Escaping Bypass Vulnerability Akamai Download Manager Arbitrary Program Execution Vulnerability SugarCRM Community Edition Local File Disclosure Vulnerability
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®