¨Attacker must get a copy of the encrypted/hashed password representations stored in the SAM database of target machine
¨L0phtCrack includes “pwdump” tool for dumping Windows NT password representation from a local or remote machine across the network
–Requires administrator privileges on target machine
¨