What's New in LC4

LC4 adds numerous enhancements to the critically-acclaimed capabilities of its L0phtCrack predecessors:

  • Updated GUI
    The interface has been updated, and now displays more information to the user.

  • Sortable Column Headings
    All column headings are now sortable, which provides greater flexibility for managing large password files.

  • Password Domain
    The password domain can be displayed to help organize large password files.

  • Cracking Method
    LC4 now displays the method used to crack the password.

  • Improved Hybrid Mode
    The hybrid cracking mode is now much more powerful.The old hybrid mode appended up to three characters to the end of dictionary words.The new mode can also prepend characters to dictionary words, as well as look for common character substitutions.For example, if the dictionary word is "password", LC4 can find "password!", "!password", or even "#$p@$$w0rd^%". Turning on the more powerful hybrid features takes longer, but since many people base their passwords on dictionary words, it is a much more intelligent brute force.

  • SYSKEY Notifications
    Additional SYSKEY warnings are incorporated to help users avoid cracking attempts on SYSKEY-encrypted password files.

  • Multiple Dictionary Support
    LC4 can now use multiple dictionary files in a single audit.

  • Export Password Files
    LC4 can now export a complete list of all passwords cracked during the audit.This file can be used as one of the dictionary files, and allows auditors to detect when users reuse passwords or variations of old passwords.

  • Export Audit Results
    LC4 can now extract unencrypted password hashes from systems that use Microsoft's SYSKEY protection, and it uses an updated packet sniffer that supports Windows 2000 systems. The exporting feature has been improved. Now any visible column is exported to a tab-delimited file for easy reporting with external tools.

  • Works with Single Byte International Character Sets
    LC4 supports international language input locales, allowing it to work with operating systems and passwords based on single byte character sets including those for European, Cyrillic, Greek, Hebrew, Arabic, and other languages.