I recently obtained the l0pht-CD for windows and tried it out on my PC and It WORKS!!
http://2600hertz.wordpress.com/2009/12/22/100-windows-xp-vista-7-password-recovery/
- I have also read http://kestas.kuliukas.com/RainbowTables/
I'm designing a "Login-Simulator" that stores pwd-s in a similar manner. The current implementation will be vulnerable to the above attack. Plz could anyone illustrate (in as simple terms as possible), how to strengthen against such a rainbow tables attack.
MY GOAL : Build "Login-Simulator" to be as secure as possible. (Read Hacking Competition ;-) )
Thank You.