Re: Access a remote registry

[H D Moore <hdm () secureaustin com>]

Try using the "rpcclient" program that ships with Samba TNG.  It lets you do 
all sorts of things, including enumerate users and access the registry.  If 
you know Perl, you can try using ActiveStates's win32 Perl to write a script 
which uses the built in registry functions.  I used this a long time ago to 
retrieve the netscape mail pop-3 passwords from an entire network of NT 
workstations...  

On Tuesday 15 May 2001 02:53 am, BrainSCAN wrote:
> Hello.
>
> I'm checking the security of a Windows NT server. I have first used Retina
> to get a general overview of the server, and it has discovered that the
> Guest user has access to the registry.
>
> As I'm not the kind of people who believes anything, and less if it comes
> froma program which can give a false alarm, I have tried to access the
> remote registry by myself using regedit, rededt32 and reg.exe from a W2K
> Pro, but with no luck. I have tried connecting after creating a null
> session, but it didn't work either.
>
> I could connect to other computers where I have Admin level, so it worked.
> How do I connect with Guest access? Is Retina wrong or I'm doing something
> wrong? How can I connect to a remote registry?
>
> Thanks in adavance.