L0phtCrack is a password auditing and recovery tool. It can:
Capture password hashes over the network (e.g., via SMB).
Crack password hashes using dictionary, brute-force, or hybrid attacks.
It’s particularly effective when used on SMB-based challenge-response authentication (NTLM/LM) captured via packet sniffing.
From CEH v13 Courseware:
Module 4: Enumeration
Module 6: Malware Threats
CEH v13 Study Guide states:
“L0phtCrack can sniff SMB authentication exchanges from network traffic and extract NTLM password hashes to crack them offline.”
Incorrect Options:
A: This is possible (hence A is wrong).
B: Netbus is a backdoor/trojan tool.
C: NTFSDOS is used to read NTFS partitions under DOS, not for password cracking.
[Reference:CEH v13 Study Guide – Module 4: Password Cracking → ToolsL0phtCrack Documentation, , , , , ======, , ]
Submit