Security Dashboard
ARTICLE
fgdump "Mass Password Auditing Tool " version 2.1.0 released
Thursday 8 May 2008
fgdump is a password hash dumper for Windows 2000 and later systems. It is capable of dumping LanMan and NTLM hashes as well as password hash histories.Changelog
Better 32/64 bit detection. This is not as easy as it sounds, at least not remotely! If someone has a sure-fire way for 100% reliably detecting the target OS, please let me know. In the mean time, if fgdump is unsure, it will report it and default to 32-bit.
The -O [32|64] flag will manually override the target OS architecture. So, for example if fgdump is reporting a host as 32-bit and you KNOW it is 64-bit, you can use -O 64 (or vice-versa, of course). Note that this flag will apply to ALL hosts you are dumping! You might want to single out any hosts you need to override.
cachedump64.exe was not being deleted from 64-bit targets, which should be fixed now
POSTSCRIPTUM
RELATED ARTICLES
fgdump, Password Cracking, 8 May 2008 : fgdump "Mass Password Auditing Tool " version 2.1.0 released27 April 2008 : fgdump "the password hash knife" upgraded to 2.0.031 October 2007 : Fgdump - passwords dumping utility - v1.7 released
