Password retrieval for SQL

[OldSkoolSkater]

Hi All

Is there any way to retrieve passwords from tables within a sql database?
I don't need to know the sql login details from the master.mdf, but rather the encrypted application passwords from a user details table within an application db.
Any pointers folks?

Cheers

Steve - Network Coordinating in the UK

 

[onpnt]

The nature of this question is fairly touchy so all I'm willing to really say is they use MD5 encryption

[sub]____________ signature below ______________
The worst mistake you'll ever make is to do something simply the way you know how while ignoring the way it should be done[/sub]

 

[mrdenny]

I don't think the op is talking about the actual SQL accounts, but values stored within his database.

I take it no one thought to write down the information about the encryption?

Denny
MCSA (2003) / MCDBA (SQL 2000)
MCTS (SQL 2005 / Microsoft Windows SharePoint Services 3.0: Configuration / Microsoft Office SharePoint Server 2007: Configuration)
MCITP Database Administrator (SQL 2005) / Database Developer (SQL 2005)

--Anything is possible. All it takes is a little research. (Me)

http://www.mrdenny.com

 

[OldSkoolSkater]

Thanks Guys

mrdenny is right in that it is the values within a db that I require.

onpnt I understand your caution. We have a bpm app that has a single administration account and managed by one guy. The guy in question died suddenly last week taking his password details with him, so now we are stuck for administration rights.

I can re-install the app to enforce the default high-level account password but understandably want to avoid this if at all possible.

Cheers

Steve - Network Coordinating in the UK

 

[onpnt]

And I always joke that if I die these people would be in a world of hurt.

What do the passwords look like when you view the column?

[sub]____________ signature below ______________
The worst mistake you'll ever make is to do something simply the way you know how while ignoring the way it should be done[/sub]

 

[OldSkoolSkater]

Looks like hex to me:

25ED38AF6DCEACC59985AF091BF18BFF

Google translator doesn't work on it ; )

Cheers

Steve - Network Coordinating in the UK

 

[mrdenny]

I take it you don't have any information on the way that the password was encrypted?

Unfornitually you will need to search the net for some brute force cracking tool, and brute force your way in. Hopefully he used a dictionary work which will speed up the process.

Can you contact the vendor or check there docs? Maybe they have some info as to how the encryption is being done?

If they are doing the encryption within the database (and they aren't using the Microsoft supplied procedures) then you may be able to see some extra extended stored procedures on the system.

If they are using the Microsoft provided code there are several brute force programs out there to crack the passwords.

I take it the password wasn't written down anywhere?

Another option would be to create an account with a known password and simply update the password of the admin account with the known already encrypted value.

Denny
MCSA (2003) / MCDBA (SQL 2000)
MCTS (SQL 2005 / Microsoft Windows SharePoint Services 3.0: Configuration / Microsoft Office SharePoint Server 2007: Configuration)
MCITP Database Administrator (SQL 2005) / Database Developer (SQL 2005)

--Anything is possible. All it takes is a little research. (Me)

http://www.mrdenny.com