Category Archives: Studies

A crude but simple password stealer

As I have explained earlier, I’ve had to write a crude password stealer as part of an information security course.

The right approach was to write the entire thing by myself, with the hash dump and smtp login coupled within my program. This however would take quite a lot of time, and between work and studies and my life, I was not in the right mood to write this myself. Thus, I’ve found myself looking at available tools of the trade and how to use them.
I decided to do it with two very simple command line tools, one being PwDump, a program that simply dumps your windows pass hashes. The other being blat, which despite it’s funny name (to us Russian speakers) is a very useful tool – It allows you to send files from the CLI via smtp. If you don’t see why you would need it, clearly you’ve never worked as a system administrator.

Continue reading