1 nov. 2009

[Password Recovery Kit] Recuperar Passwords perdidas

aquí un Kit de recuperación de passwords de lostpassword.com, passware kit enterprise.
Estas (ver debajo) son las opciones del programa. Podemos ver que puede cargarse un archivo para reventarlo o también podemos meternos por alguno de los wizards, que intentarán buscar archivos protegidos de distintos tipos por el disco duro (explorer, pdfs, ...) y recuperar sus passwords ...


La lista de formatos que es capaz de atacar es inmensa:

Acrobat 3.0   PDF   Instant Recovery / Brute-force Recovery - Fast
Acrobat 4.0  PDF  Instant Recovery / Brute-force Recovery - Fast
Acrobat 5.0  PDF  Instant Recovery / Brute-force Recovery - Slow
Acrobat 6.0  PDF  Instant Recovery / Brute-force Recovery - Slow
Acrobat 7.0  PDF  Instant Recovery / Brute-force Recovery - Slow
Acrobat 8.0  PDF  Instant Recovery / Brute-force Recovery - Slow
Acrobat 9.0  PDF  Instant Recovery / Brute-force Recovery - Medium
Symantec ACT! 2.0  BLB  Instant Recovery
Symantec ACT! 3.0  BLB  Instant Recovery
Symantec ACT! 4.0  BLB  Instant Recovery
Symantec ACT! 2000  BLB  Instant Recovery
ACT! by Sage 2005  ADF  Instant Recovery
ACT! by Sage 2006  ADF  Instant Recovery
ACT! by Sage 2007  ADF  Instant Recovery
ACT! by Sage 2008  ADF  Instant Recovery
ACT! by Sage 2009  ADF  Instant Recovery
BestCrypt 6.0  JBC  Brute-force Recovery - Slow
BestCrypt 7.0  JBC  Brute-force Recovery - Slow
BestCrypt 8.0  JBC  Brute-force Recovery - Slow
FileMaker Pro 3.0  FP3  Instant Recovery
FileMaker Pro 4.0  FP3  Instant Recovery
FileMaker Pro 5.0  FP5  Instant Recovery
FileMaker Pro 6.0  FP5  Instant Recovery
FileMaker Pro 7.0  FP7  Instant Removal
FileMaker Pro 8.x  FP7  Instant Removal
FileMaker Pro 9.0  FP7  Instant Removal
FileMaker Pro 10.0  FP7  Instant Removal
ICQ 2000 - 2003  DAT  Instant Recovery
ICQ 99a  DAT  Instant Recovery
ICQ Lite  FB  Instant Recovery
Lotus 1-2-3 1.1+  WK!, WK1, WK4, WRC, WR1, WR9, 123  Instant Recovery
Lotus Notes 4.x  ID  Brute-force Recovery - Medium
Lotus Notes 6.x  ID  Brute-force Recovery - Medium
Lotus Notes 7.0  ID  Brute-force Recovery - Medium
Lotus Notes 8.0
(RC2 encryption)  ID  Brute-force Recovery - Medium
Lotus Organizer 1.0  ORG  Instant Recovery
Lotus Organizer 2.0  OR2  Instant Recovery
Lotus Organizer 3.0  OR3  Instant Recovery
Lotus Organizer 4.0  OR4  Instant Recovery
Lotus Organizer 5.0  OR5  Instant Recovery
Lotus Organizer 6.0  OR6  Instant Recovery
Lotus Word Pro 96 - 99  LWP  Instant Recovery
Mozilla Firefox 1.0   Instant Recovery
Mozilla Firefox 2.0   Instant Recovery
Mozilla Firefox 3.0   Instant Recovery
MS Access 2.0  MDB  Instant Recovery
MS Access 95  MDB  Instant Recovery
MS Access 97  MDB  Instant Recovery
MS Access 2000  MDB  Instant Recovery
MS Access 2002  MDB  Instant Recovery
MS Access 2003  MDB  Instant Recovery
MS Access 2007  ACCDB  Brute-force Recovery - Slow
MS Access 2.0 System Database  MDA  Instant Recovery
MS Access 97 System Database  MDW  Instant Recovery
MS Access 2000 System Database  MDW  Instant Recovery
MS Access VBA  MDA  Instant Recovery or Reset
MS Backup  QIC  Instant Recovery
MS Excel 4.0  XLS  Instant Recovery
MS Excel 5.0  XLS  Instant Recovery
MS Excel 95  XLS  Instant Recovery
MS Excel 97  XLS  Instant Recovery or Removal / Brute-force Recovery - Fast
MS Excel 2000  XLS  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Excel 2002  XLS  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Excel 2003  XLS  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Excel 2007  XLSX, XLSM  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Pocket Excel  PXL  Instant Recovery
MS Excel VBA  XLA, XLSM  Instant Recovery or Reset
MS Internet Explorer 4.0 - 8.0 Website   Instant Recovery
MS Internet Explorer 6.0 - 8.0 Webform   Instant Recovery
MS Internet Explorer 6.0 - 8.0 Content Advisor   Instant Removal
MS Mail  MMF  Instant Recovery
MS Money 99 or earlier  MNY  Instant Recovery
MS Money 2000 - 2001  MNY  Instant Recovery
MS Money 2002  MNY  Brute-force Recovery - Medium
MS Money 2003 - 2004  MNY  Brute-force Recovery - Medium
MS Money 2005 - 2007  MNY  Brute-force Recovery - Medium
MS OneNote 2003 Section  ONE  Brute-force Recovery - Medium
MS OneNote 2007 Section  ONE  Brute-force Recovery - Slow
MS Outlook 2000/2003/2007 Email Accounts     Instant Recovery
MS Outlook 2000/2003/2007 Form Template  OFT  Instant Recovery
MS Outlook 2000/2003/2007 Personal Storage  PST  Instant Recovery
MS Outlook Express Email Accounts   Instant Recovery
MS Outlook Express Identities   Instant Recovery
MS PowerPoint 2002  PPT  Instant Recovery or Removal / Brute-force Recovery - Medium
MS PowerPoint 2003  PPT  Instant Recovery or Removal / Brute-force Recovery - Medium
MS PowerPoint 2007  PPTX, PPTM  Instant Recovery or Removal / Brute-force Recovery - Slow
MS PowerPoint VBA  PPT, PPTM  Instant Recovery or Reset
MS Project 95  MPP  Instant Recovery
MS Project 98  MPP  Instant Recovery
MS Project 2000  MPP  Instant Recovery
MS Project 2002  MPP  Instant Recovery
MS Project 2003  MPP  Instant Recovery
MS SQL 2000  MDF  Instant Reset
MS SQL 2005  MDF  Instant Reset
MS SQL 2008  MDF  Instant Reset
MS Windows NT Users / Secure Boot Option   Instant Removal
MS Windows 2000 Users / Secure Boot Option   Instant Removal
MS Windows 2000 Server Users / Secure Boot Option   Instant Removal
MS Windows 2000 Server Active Directory Administrator   Instant Removal
MS Windows XP Users / Secure Boot Option   Instant Removal
MS Windows 2003 Server Users / Secure Boot Option   Instant Removal
MS Windows 2003 Server Active Directory Administrator   Instant Removal
MS Windows 2003 SBS Users / Secure Boot Option   Instant Removal
MS Windows 2003 SBS Active Directory Administrator   Instant Removal
MS Windows Vista (32 bits) Users / Secure Boot Option   Instant Removal
MS Windows 2008 Server Users / Secure Boot Option   Instant Removal
Network Connections   Instant Recovery
Remote Desktop Connections  RDP  Instant Recovery
MS Word 1.0  DOC, DOT  Instant Recovery
MS Word 2.0  DOC, DOT  Instant Recovery
MS Word 3.0  DOC, DOT  Instant Recovery
MS Word 4.0  DOC, DOT  Instant Recovery
MS Word 5.0  DOC, DOT  Instant Recovery
MS Word 6.0  DOC, DOT  Instant Recovery
MS Word 95  DOC, DOT  Instant Recovery
MS Word 97  DOC, DOT  Instant Recovery or Removal / Brute-force Recovery - Fast
MS Word 2000  DOC, DOT  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Word 2002  DOC, DOT  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Word 2003  DOC, DOT  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Word 2007  DOCX, DOTX, DOCM  Instant Recovery or Removal / Brute-force Recovery - Slow
MS Word VBA  DOC, DOT, DOCM, DOTM  Instant Recovery or Reset
MYOB earlier than 2004  PLS, PRM  Instant Recovery
MYOB 2004  DAT  Instant Reset
MYOB 2005  MYO  Instant Reset
MYOB 2006  MYO  Instant Reset
MYOB 2007  MYO  Instant Reset
MYOB 2008  MYO  Instant Reset
MYOB 2009  MYO  Instant Reset
Norton Backup  SET  Instant Recovery
Paradox Database  DB  Instant Recovery
Peachtree 2002 - 2006  DAT  Instant Recovery
Peachtree 2007  DAT  Instant Recovery
Quattro Pro 5 - 6  QPW, WB1, WB2, WB3  Instant Recovery
Quattro 7 - 8  QPW, WB1, WB2, WB3  Instant Recovery
Quattro Pro 9 - 12, X3, X4  QPW  Instant Recovery
QuickBooks 3.x - 4.x  QBW, QBA  Instant Recovery
QuickBooks 5.x  QBW, QBA  Instant Recovery
QuickBooks 6.x - 8.x  QBW, QBA  Instant Recovery
[...]
Quicken 2008  QDF  Brute-force Recovery - Slow
Quicken 2009  QDF  Brute-force Recovery - Slow
RAR 2.0 Archive  RAR  Brute-force Recovery - Slow
RAR 2.9 - 3.x (AES Encryption) Archive  RAR  Brute-force Recovery - Slow
Schedule+ 1.0  CAL  Instant Recovery
Schedule+ 7.x  SCD  Instant Recovery
WordPerfect 5.x  WPD  Instant Recovery
WordPerfect 6.0  WPD  Instant Recovery
WordPerfect 6.1  WPD  Instant Recovery
WordPerfect 7 - 12, X3, X4  WPD  Instant Recovery
ZIP Archive  ZIP  Instant Removal / Brute-force Recovery - Medium


Lo dicho, inmensa. Entre los tipos de archivos encontramos winrar, winzip, access, lotus organizer, ... Más o menos todos los importantes.

También podemos hacer que trabaje por nosotros y busque passwords de outlook, conexiones de red, explorer ...


Veamos un ejemplo de cómo se buscan y recuperan passwords de archivos protegidos PDF:








Tan simple como eso. Passware kit enterprise es una muy buena herramienta para buscar y recuperar passwords "perdidas", que posiblemente podamos reutilizar ...

Fuente: http://hacking-avanzado.blogspot.com/

Author & Editor

Ingeniero Civil en Computación (Universidad de Chile FCFM) y Diplomado en Gestión y Evaluación de Proyectos TI (Universidad de Chile FEN). Actualmente trabajo como Project Manager en varios proyectos y como asesor tecnológico para empresas.

1 Notaciones:

  1. Pues yo tengo una base de datos con contraseña de baja seguridad creada por mi y no es capaz de romperla

    ResponderEliminar

Nota: solo los miembros de este blog pueden publicar comentarios.

Labels

0-day (12) 1337day (1) 8.8 (2) Adobe Acrobat (1) Android (2) Anonimato (1) Anonymous (9) BackDoor (2) BackTrack (15) badUSB (1) Base64 (1) Black Hat (7) BlackHat (1) Blackploit (25) Brute Force (3) Bug (106) Bypass Password (1) Bypass Redirect (1) C99 Shell (1) Carding (1) CheatSheet (15) Chilean Way (1) Conference (10) Cryptsetup (1) CSRF (1) DDoS (11) DEF CON (3) DEFCON (7) Diapositivas (1) Diseño Web (1) Distro Linux (27) Documental (2) DoS (2) Drupal (1) DuckDuckGo (1) E-zine (18) Ekoparty (1) Escaneo (4) España (1) Exploit (64) Ezine (1) Facebook (1) Fast-Info (44) FBI (1) Ficheros Binarios (1) Firefox (4) Flash (2) Forense (9) Fuerza Bruta (11) Fuga de Datos (1) GhostShell (1) GNU/Linux (4) Google (2) Guía (1) Hack T00LZ (130) Hack Tips (63) Hacked (6) Hacking (18) Hacking Hardware (5) HashCat (1) Herramientas (121) HighSecCON (1) Humor Geek (13) Infografía (1) Ingeniería Social (5) Inj3ct0r (1) Internet Explorer (3) Java (7) JavaScript (2) Kali (3) KitPloit (1) Leaks (21) Linux OS (79) LulzSec (1) Mac OS (10) Magazine (1) Malaware (3) Malaware Tools (12) Malware (1) Man in the Middle (15) Manuales (3) MD5 CRACK (4) Metasploit (57) MSSQL (1) MySQL (6) MySQL CRACK (1) Nmap (6) Nmap NSE (2) Noticias (193) NTLM CRACK (1) Ofuscar (5) OpenSolaris OS (1) OpenSSL (1) ORACLE (1) OWASP (3) Paper (10) PDF (7) PenTest (14) Perl (2) Phearking (13) Phishing (3) PHP (13) phpMyAdmin (1) PoC (1) Premios Bitacoras (1) Presentaciones (11) PRISM (1) Privacidad (2) Programación (12) Programas Linux (41) Programas Windows (41) Pwned (1) Python (5) Reconocimiento (5) Ruby (2) s (1) Scripts (7) Seguridad (145) Seguridad Web (140) Seguridad Wireless (19) Sensitive Data Exposure (2) SHA1 CRACK (1) Shellshock (1) Slides (1) Spoofing (1) Spyware (1) SQLi (19) SQLi Tools (7) SQLMap (2) SSH (1) Textos (74) Tips (57) Troyanos y Virus (11) Trucos (7) Trucos Win (7) Turiales (56) Tutoriales (18) Twitter (1) Ubuntu (2) Underc0de (1) UnderDOCS (1) Unlock (1) URL Redirection (1) UXSS (1) vBulletin (1) Video (48) Virtualización (2) Web T00LZ (17) Wifislax (1) Wikileaks (1) WikiRebels (1) Windows OS (66) Wireless Tools (13) XSS (16) Youtube (1)

 
biz.