Hi Guys. I would like some advice or some info to steer me down the right road. I am a mature student taking an MCSE course. As part of the 2k server portion of the course, my instructor gives out bonus marks for a hack of the server. We get 10% per hack, so in theory we could end up with 130% as a final mark for 2k server. For the first hack, physical access to the server is allowed and I used NT Change Password to re-write the SAM and it was no prob. The second hack is remote, but it's only a default install with only the admin password in the way. I found a tool called NetBIOS Auditing Tool(NAT), which I tried at school and cracked 2K Pro, 2K member server and 2K Dc server. I did include my password in the wordlist of course to make sure it works. Here are the details, of which I hope you can use to help me in the right direction, or even tell me if i'm on the right path. NetBEUI, no lockout, 10 mins, my local machine has a triple boot with 2K pro, server and DC. The password will be at least 6 characters long. If I understand right, it will be between 6-9 characters. I can crack it, but my problem is nailing down a good wordlist so that I can hit in 10 mins and still have time to map a drive and get in quick enough to edit the txt file he requests to get my 10% bonus. Should I use the program that I have, or does anyone know of anything else that might get me in quicker? I was going to try Lophtcrack4, but syskey will prevent me from doing that. I also considered Brutus, but NAT did work and its REALLY fast, I just need a good wordlist.
BTW, I'm a virtual newbie only have been introduced to comps less than a 1 1/2 yrs ago, but i'm not lazy and have read many books. Not looking for a free lunch or to have it laid out, i would like a sense of accomplishement but wouldn't mind some advice.
Thanks!