July 2018
Intermediate to advanced
452 pages
11h 51m
English
Remember that Windows passwords are special (it isn't a compliment this time) in that they aren't salted. If my password is Phil, then the NTLM hash you find will always be 2D281E7302DD11AA5E9B5D9CB1D6704A. Windows never stores or transmits a password in any readable form; it only verifies hashes. There's an obvious consequence to this and it's exploited with the Pass-the-Hash (PtH) attack.