NTLMv1 rainbow table could crack admin passwords in hours, pressuring migration

January 16, 2026 at 10:29 PM

•

1 min read

NTLMv1 rainbow table could crack admin passwords in hours, pressuring migration — Photo: Ars Technica

TL;DR Summary

Mandiant released a Google Cloud-hosted rainbow table for Net-NTLMv1 that can recover admin passwords in under 12 hours on consumer hardware, highlighting NTLMv1’s weak keyspace and its continued use in sensitive networks. While meant to aid defenders in proving NTLMv1’s insecurity and pushing migration, the table also lowers barriers for attackers when paired with tools like Responder, PetitPotam, and DFSCoerce. Microsoft deprecated NTLMv1, and organizations are urged to disable Net-NTLMv1 despite legacy-application constraints.

Topics:technology #cybersecurity #microsoft-ntlm #ntlmv1 #password-cracking #rainbow-table #security

Share this article

Mandiant releases rainbow table that cracks weak admin password in 12 hours Ars Technica

Reading Insights

Total Reads

Unique Readers

Time Saved

5 min

vs 6 min read

Condensed

93%

1,007 → 73 words

Want the full story? Read the original article

Read on Ars Technica

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights