They can only crack older hash versions.

They require a lot of memory.

They are not compatible with Windows networks.

They are time-consuming due to long passwords.

The network must have SMB signing enabled.

The network must have SMB signing disabled.

The network must use HTTP protocol.

The network must have outdated machines.

DNS and FTP

HTTP and SMB

SMTP and POP3

SSH and Telnet

To avoid detection by network security tools.

To increase the speed of the attack.

To bypass network firewalls.

To ensure the attack is directed at the correct victim machine.

Mini Cats

Hashcat

John the Ripper

Wireshark

Outdated machines or lack of SMB signing

Regular software updates

Strong password policies

Encrypted network traffic

It allows faster data transfer.

It prevents unauthorized relay of NTLM hashes.

It disables unused network ports.

It encrypts all network traffic.