Ars Technica

NT Hash vs. LanMan Hash. Hyperbole or something to worry about?

Uhg, I just thought of something, someone could reenable lanman hashes without you knowing. Just use a boot disk that mounts ntfs (ntfsdos or linux) and then use a registry editor to reenable lanman ...
InfoWorld

Getting a grip on better password hashes

Many of today’s computer passwords are stored and transmitted in a cryptographic hashed form. A strong password hash algorithm ensures that if the password hash is obtained by unauthorized parties ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
CSOonline

Intercepting pass-the-hash attacks

Pass-the-hash attacks are among the most difficult assaults to thwart. In these attacks, an intruder — or an employee performing unauthorized activities — gains administrative (or root) access to a ...