Step-by-step guide: Cracking network passwords

Passwords are often the first (and all too often, the last) line of defense to protect sensitive digital assets. Given that most Windows-based passwords (domain, Terminal Services, e-mail, etc.) tie back to the domain account, all it takes is one hole -- one entry point -- to get in and crack a password. Once that's done, anything is fair game. This is especially true with all the IIS-based applications, Citrix deployments, and other outward facing applications that so many organizations have in place today.

Cracking network passwords

 Home: Introduction
 Step 1: Ethical hacking methodology

More Information Visit this resource center for news, tips and expert advice on how to strengthen user accounts and passwords.

 Step 2: Tools you should use
 Step 3: What good are your findings?

This step-by-step guide originally appeared on SearchWindowsSecurity.com

Rate this Tip To rate tips, you must be a member of SearchSecurity.com. Register now to start rating these tips. Log in if you are already a member. Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT Network Security Tactics IE 8 beta 2 security features may mark improvements for browser security Screencast: How to use Nipper to create network security reports Mining enterprise SIM logs for relevant security event data How to configure NAP for Windows Server 2008 Exploring Microsoft's Network Access Protection policy options Screencast: How to use Wikto for Web server assessment How to avoid DLP implementation pitfalls Microsoft Baseline Security Analyzer: Do updates offer improved Windows security? How to patch Kaminsky's DNS vulnerability Directory services and beyond: The future of LDAP Password Cracking Bluetooth 2.1 is easy to crack Screencast: An introduction to the Open Source Security Testing Methodology Manual (OSSTMM) Ophcrack: Password cracking made easy What tools can a hacker use to crack a laptop password? Is encryption only as good as an organization's password management and access control policies? What are the risks associated with RIM's line of PDAs? Security360: Identity management market How to prevent hackers from accessing your router security password Complex password compliance requirements made simple Firefox, IE flaw could expose passwords RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary cracker  (SearchSecurity.com) masquerade  (SearchSecurity.com) salt  (SearchSecurity.com) session replay  (SearchSecurity.com) shadow password file  (SearchSecurity.com) war dialer  (SearchSecurity.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.