Penetration Testing mailing list archives
Re: Re: Password Crack an OU in Windows 2003
From: jfvanmeter () comcast net
Date: Thu, 11 Oct 2007 07:08:20 +0000
Good Morning everyone, did you do that with domain admin rights or anonymously? There are group policy settings to restrict anonymous ldap queries of AD. Take Care and Have Fun --John -------------- Original message ---------------------- From: Matthew Webster <awakenings () mindspring com>
Folks, I performed an LDAPquery and listed the users in the OU. I just used pwdump to collect all of the information from the domain then greped out the pertinent hashes. Thanks, Matt -----Original Message-----From: ben.dexter () act gov au Sent: Oct 10, 2007 2:44 AM To: pen-test () securityfocus com Subject: Re: Re: Password Crack an OU in Windows 2003 No you don't. However, the main issue appears to be cracking a limited subsetof the AD database.Michael, assuming you have been able to dump the username/hashes from a DC to afile could you just get a listing of the appropriate users (net group? I'm going on a leap of faith that they will all have at least one group in common as they are all in the same OU, or use Hyena etc) and filter out all of the other username/hashes prior to cracking?Ben. ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- Password Crack an OU in Windows 2003 Matthew Webster (Oct 09)
- Re: Password Crack an OU in Windows 2003 Jan Heisterkamp (Oct 09)
- RE: Password Crack an OU in Windows 2003 Thor (Hammer of God) (Oct 10)
- <Possible follow-ups>
- Re: Re: Password Crack an OU in Windows 2003 ben . dexter (Oct 10)
- Re: Re: Password Crack an OU in Windows 2003 Matthew Webster (Oct 10)
- Re: Re: Password Crack an OU in Windows 2003 jfvanmeter (Oct 11)
- Re: Password Crack an OU in Windows 2003 Jan Heisterkamp (Oct 09)