Mandiant releases rainbow table that cracks weak admin password in 12 hours
Mandiant has released an NTLMv1 rainbow table that can crack weak admin passwords in under 12 hours using consumer hardware costing less than $600 USD. Despite the well-known vulnerabilities of NTLMv1, some sensitive networks still use it due to legacy app compatibility and the high cost of migration. The release of this rainbow table aims to help security professionals demonstrate the insecurity of NTLMv1 more easily. The table is hosted in Google Cloud and can be used to recover Net-NTLMv1 passwords used in network authentication.
Ars Technica•