11-12-2014, 10:07 PM
(11-12-2014, 08:26 PM)slawson Wrote: Thanks for the info. I guess one last question on this is:
Is there any way to tell fgdump to ignore the machine accounts, so that they don't crowd up my hash file?
Typically we remove these entries through a quick "grep -v" on the file for a $, provided no legitimate domain accounts contain this character.
As far as I know fgdump does not support skipping machine accounts.
The likelihood of cracking one of these is exceedingly low as epixoip stated. You're best off ignoring them and focusing on users.