NT Crack v2.0

This is a program to be used in combination with Jeremy Allison's pwdump
to test NT passwords in the same way as Alec Muffet's Crack does for 
UNIX users.

This program was written by Jonathan Wilkins <jwilkins@secnet.com>
Thanks go to Oliver Freidrichs, Jesse Burns and Alfred Huger.

This tool comes with complete source but requires lib-des in order
to function.  One version is available at 
   ftp://ftp.psy.uq.oz.au/pub/Crypto/DES/
I used version 4.01.

This program is in it's infant stages and it needs further 
development. If you are interested in helping NTCrack improve, 
we encourage you to mail us at ntcrack-dev@secnet.com

Here is the announcement I sent out with version 2. It describes
the various improvements that have been made.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
NT Crack version 2 has been released.

I apologize for how soon it follows the initial release but I 
think that a massive optimization in speed in the new version
justifies a new release. 

We ran a user list of length 1006 with a word list of around 860,000 in 
5 minutes 30 seconds on a pentium 133 with 32MB RAM running 
Windows NT Server.

Roughly 2,606,000 cracks per second..

This is due to Windows NT's lack of any salt functions as well as a
few optimizations regarding the encryption routine and a change in 
the way NTCrack processes user files.

The new version is also independent of the cygwin.dll and so is 
much smaller but it seems that the cygwin libraries are marginally
faster. When NTCrack is compiled and linking in the cygwin 
libraries it was somewhat faster but I decided to release the smaller
version because our little ISDN net connection was getting a little
choked.  Anyone who wishes to mirror this program should contact
me via email at jwilkins@secnet.com

Speed freaks are encouraged to compile their own copies 
for various UNIX platforms rather than deal with the
overhead of Windows.

One other feature was added, the program now attempts to use
the username as the password.  I have found in many smaller
offices, especially ones that run NT or Netware, that users are
generally uneducated about what constitutes a good password
and so will often use their username.


					Jonathan Wilkins

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Copyright Notices
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
The main program is Copyright (C) Jonathan Wilkins
and comes with no warranties of any sort. Use at
your own risk and so forth.


This package is utilizes code written by Andrew Tridgell and
contains the following license agreement:

/* 
   Copyright (C) Andrew Tridgell 1992-1995
   
   This program is free software; you can redistribute it and/or modify
   it under the terms of the GNU General Public License as published by
   the Free Software Foundation; either version 2 of the License, or
   (at your option) any later version.
   
   This program is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU General Public License for more details.
   
   You should have received a copy of the GNU General Public License
   along with this program; if not, write to the Free Software
   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
*/

It also contains libdes and so Eric Young's copyright notice needs
to be appended here : 


Copyright (C) 1995-1997 Eric Young (eay@mincom.oz.au)
All rights reserved.

This package is an DES implementation written by Eric Young (eay@mincom.oz.au).
The implementation was written so as to conform with MIT's libdes.

This library is free for commercial and non-commercial use as long as
the following conditions are aheared to.  The following conditions
apply to all code found in this distribution.

Copyright remains Eric Young's, and as such any Copyright notices in
the code are not to be removed.
If this package is used in a product, Eric Young should be given attribution
as the author of that the SSL library.  This can be in the form of a textual
message at program startup or in documentation (online or textual) provided
with the package.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions
are met:
1. Redistributions of source code must retain the copyright
   notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright
   notice, this list of conditions and the following disclaimer in the
   documentation and/or other materials provided with the distribution.
3. All advertising materials mentioning features or use of this software
   must display the following acknowledgement:
   This product includes software developed by Eric Young (eay@mincom.oz.au)

THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
SUCH DAMAGE.

The license and distribution terms for any publically available version or
derivative of this code cannot be changed.  i.e. this code cannot simply be
copied and put under another distrubution license
[including the GNU Public License.]

The reason behind this being stated in this direct manner is past
experience in code simply being copied and the attribution removed
from it and then being distributed as part of other packages. This
implementation was a non-trivial and unpaid effort.
