<a href="https://colab.research.google.com/github/heet25itachi/TIMEPASS_BUDDY/blob/main/pwdump.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [1]:
%%writefile pwdump_simulator.cpp
#include <iostream>
#include <vector>
#include <string>
#include <iomanip>
#include <sstream>
#include <limits>
#include <algorithm>

using namespace std;

// --- Simulating a Hashing Function (SHA-256 for modern security concept) ---
// Note: This is a minimal, non-cryptographic hash for demonstration purposes only.
// The actual NTLM/LanMan hashes are complex and use different algorithms.
string calculate_simulated_hash(const string& password) {
    if (password.empty()) return "NO_PASSWORD_HASH";

    // Use a simplified, non-secure hash for demonstration (simulates SHA-256 length)
    // In a real scenario, you'd use a crypto library.
    hash<string> str_hash;
    size_t hash_value = str_hash(password);

    // Convert the hash value to a fixed-length hexadecimal string
    stringstream ss;
    // Simulate a typical 32-byte hash (64 hex characters)
    ss << hex << setfill('0') << setw(64) << hash_value << hash_value;

    string hash_str = ss.str();
    // Ensure fixed length by trimming if too long (unlikely) or repeating (for demo)
    if (hash_str.length() > 64) {
        return hash_str.substr(0, 64);
    }
    return hash_str;
}

// --- Data Structures ---

struct UserAccount {
    int rid;
    string username;
    string plaintext_password; // Used to generate the simulated hash
    string lm_hash;           // LanMan Hash (often blank or disabled today)
    string nt_hash;           // NTLM Hash
};

// --- Core Logic ---

/**
 * @brief Generates simulated account data and calculates hashes.
 * @return A vector of simulated UserAccount objects.
 */
vector<UserAccount> generate_accounts() {
    vector<UserAccount> accounts = {
        {500, "Administrator", "P@ssword123", "", ""},
        {1000, "GuestUser", "GuestPass!", "", ""},
        {1001, "DevOps", "D3vPass456", "", ""},
        {1002, "ServiceAcct", "svc_key_99", "", ""}
    };

    // Calculate simulated hashes for each account
    for (auto& user : accounts) {
        // LanMan hash is usually empty in modern Windows, but we generate a fixed
        // length placeholder to maintain the classic pwdump format structure.
        user.lm_hash = "AAD3B435B51404EEAAD3B435B51404EE"; // Standard empty LM hash

        // Use the simulated NTLM hash based on the password
        user.nt_hash = calculate_simulated_hash(user.plaintext_password);
    }
    return accounts;
}

/**
 * @brief Generates output in the classic pwdump format.
 * Format: Username:RID:LM_Hash:NT_Hash:Comment:HomeDirectory:
 * @param accounts The list of user accounts.
 */
void display_pwdump_output(const vector<UserAccount>& accounts) {
    cout << "\n---------------------------------------------------------------------------------------------------------------------------------\n";
    cout << "  Simulated PWDUMP Output (Concept Demonstration)\n";
    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";

    string comment = "Builtin Account";
    string homedir = "/home/user";

    for (const auto& user : accounts) {
        // Output the classic format string
        cout << user.username
             << ":" << user.rid
             << ":" << user.lm_hash
             << ":" << user.nt_hash
             << ":" << comment
             << ":" << homedir
             << ":\n";
    }

    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";
    cout << "Note: The actual NTLM/LM hashes are generated using complex proprietary Windows algorithms.\n";
    cout << "      This simulation uses a simple SHA-256 based hash for conceptual demonstration only.\n";
    cout << "      The format shown above (Username:RID:LM:NT:...) is the genuine pwdump structure.\n";
    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";
}

// --- Main Program ---

int main() {
    // 1. Simulate the process of extracting data from the SAM file
    cout << "Starting PWDUMP Simulator...\n";
    cout << "Simulating data extraction from the SAM database...  \n";

    // 2. Generate the user accounts and their hashes
    vector<UserAccount> user_list = generate_accounts();

    // 3. Display the results in the classic pwdump format
    display_pwdump_output(user_list);

    return 0;
}

Writing pwdump_simulator.cpp


In [5]:
%%writefile pwdump_simulator.cpp
#include <iostream>
#include <vector>
#include <string>
#include <iomanip>
#include <sstream>
#include <limits>
#include <algorithm>

using namespace std;

// --- Simulating a Hashing Function (SHA-256 for modern security concept) ---
// Note: This is a minimal, non-cryptographic hash for demonstration purposes only.
// The actual NTLM/LanMan hashes are complex and use different algorithms.
string calculate_simulated_hash(const string& password) {
    if (password.empty()) return "NO_PASSWORD_HASH";

    // Use a simplified, non-secure hash for demonstration (simulates SHA-256 length)
    // In a real scenario, you had use a crypto library.
    hash<string> str_hash;
    size_t hash_value = str_hash(password);

    // Convert the hash value to a fixed-length hexadecimal string
    stringstream ss;
    // Simulate a typical 32-byte hash (64 hex characters)
    ss << hex << setfill('0') << setw(64) << hash_value << hash_value;

    string hash_str = ss.str();
    // Ensure fixed length by trimming if too long (unlikely) or repeating (for demo)
    if (hash_str.length() > 64) {
        return hash_str.substr(0, 64);
    }
    return hash_str;
}

// --- Data Structures ---

struct UserAccount {
    int rid;
    string username;
    string plaintext_password; // Used to generate the simulated hash
    string lm_hash;           // LanMan Hash (often blank or disabled today)
    string nt_hash;           // NTLM Hash
};

// --- Core Logic ---

/**
 * @brief Generates simulated account data and calculates hashes.
 * @return A vector of simulated UserAccount objects.
 */
vector<UserAccount> generate_accounts() {
    vector<UserAccount> accounts = {
        {500, "Administrator", "P@ssword123", "", ""},
        {1000, "GuestUser", "GuestPass!", "", ""},
        {1001, "DevOps", "D3vPass456", "", ""},
        {1002, "ServiceAcct", "svc_key_99", "", ""}
    };

    // Calculate simulated hashes for each account
    for (auto& user : accounts) {
        // LanMan hash is usually empty in modern Windows, but we generate a fixed
        // length placeholder to maintain the classic pwdump format structure.
        user.lm_hash = "AAD3B435B51404EEAAD3B435B51404EE"; // Standard empty LM hash

        // Use the simulated NTLM hash based on the password
        user.nt_hash = calculate_simulated_hash(user.plaintext_password);
    }
    return accounts;
}

/**
 * @brief Generates output in the classic pwdump format.
 * Format: Username:RID:LM_Hash:NT_Hash:Comment:HomeDirectory:
 * @param accounts The list of user accounts.
 */
void display_pwdump_output(const vector<UserAccount>& accounts) {
    cout << "\n---------------------------------------------------------------------------------------------------------------------------------\n";
    cout << "  Simulated PWDUMP Output (Concept Demonstration)\n";
    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";

    string comment = "Builtin Account";
    string homedir = "/home/user";

    for (const auto& user : accounts) {
        // Output the classic format string
        cout << user.username
             << ":" << user.rid
             << ":" << user.lm_hash
             << ":" << user.nt_hash
             << ":" << comment
             << ":" << homedir
             << ":\n";
    }

    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";
    cout << "Note: The actual NTLM/LM hashes are generated using complex proprietary Windows algorithms.\n";
    cout << "      This simulation uses a simple SHA-256 based hash for conceptual demonstration only.\n";
    cout << "      The format shown above (Username:RID:LM:NT:...) is the genuine pwdump structure.\n";
    cout << "---------------------------------------------------------------------------------------------------------------------------------\n";
}

// --- Main Program ---

int main() {
    // 1. Simulate the process of extracting data from the SAM file
    cout << "Starting PWDUMP Simulator...\n";
    cout << "Simulating data extraction from the SAM database...  \n";

    // 2. Generate the user accounts and their hashes
    vector<UserAccount> user_list = generate_accounts();

    // 3. Display the results in the classic pwdump format
    display_pwdump_output(user_list);

    return 0;
}

Overwriting pwdump_simulator.cpp


### Compile the C++ code

In [6]:
!g++ pwdump_simulator.cpp -o pwdump_simulator -std=c++17

### Execute the compiled program

In [7]:
!./pwdump_simulator

Starting PWDUMP Simulator...
Simulating data extraction from the SAM database...  

---------------------------------------------------------------------------------------------------------------------------------
  Simulated PWDUMP Output (Concept Demonstration)
---------------------------------------------------------------------------------------------------------------------------------
Administrator:500:AAD3B435B51404EEAAD3B435B51404EE:000000000000000000000000000000000000000000000000caa4a42fc521170d:Builtin Account:/home/user:
GuestUser:1000:AAD3B435B51404EEAAD3B435B51404EE:0000000000000000000000000000000000000000000000005b56c8b52d3b85d2:Builtin Account:/home/user:
DevOps:1001:AAD3B435B51404EEAAD3B435B51404EE:0000000000000000000000000000000000000000000000003849cd38904f4ab1:Builtin Account:/home/user:
ServiceAcct:1002:AAD3B435B51404EEAAD3B435B51404EE:000000000000000000000000000000000000000000000000ca8561a840e5a21f:Builtin Account:/home/user:
----------------------------------------