Re: [PEN-TEST] EUSR_EXSTOREEVENT

[Attonbitus Deus <Thor () HAMMEROFGOD COM>]

I would expect that an Exchange 2000 installation would be Active Directory-
pht will only crack the SAM, which probably only has the admin account and
guest in it.  Doing an SMB capture might work better.

While I am on the subject, has anyone been able to do a pht SMB capture on a
2000 box?  It errors out on all the boxes I have tried it on.
AD

----- Original Message -----
From: "Nexus" <nexus () PATROL I-WAY CO UK>
To: <PEN-TEST () SECURITYFOCUS COM>
Sent: Thursday, January 04, 2001 9:31 AM
Subject: Re: [PEN-TEST] EUSR_EXSTOREEVENT


> Have you tried running L0phtcrack on it ? http://www.l0pht.com/l0phtcrack/
> With the full brute force character set it may take a while, but that is
> what I tend to do for application created accounts.
>
> Regards,
>             JJ
>
> ----- Original Message -----
> From: <securitygeek () HUSHMAIL COM>
> To: <PEN-TEST () SECURITYFOCUS COM>
> Sent: Thursday, January 04, 2001 1:37 PM
> Subject: EUSR_EXSTOREEVENT
>
>
> > Has anyone been able to determine the password for the EUSR_EXSTOREEVENT
> > account that gets created when Exchange 2000 is installed? A search on
the
> > Internet turned up 50 or so referances to the MS Security Bulliten
(MS00-
> > 088), but not the password.
> >
> > Thanks!
>
> ____________________________________________
> http://1cis.com
> Free E-mail Servers with unlimited mailboxes
> 1st Class Internet Solutions