Penetration Testing mailing list archives
Re: Access a remote registry
From: H D Moore <hdm () secureaustin com>
Date: Tue, 15 May 2001 10:35:17 -0500
Try using the "rpcclient" program that ships with Samba TNG. It lets you do all sorts of things, including enumerate users and access the registry. If you know Perl, you can try using ActiveStates's win32 Perl to write a script which uses the built in registry functions. I used this a long time ago to retrieve the netscape mail pop-3 passwords from an entire network of NT workstations... On Tuesday 15 May 2001 02:53 am, BrainSCAN wrote:
Hello. I'm checking the security of a Windows NT server. I have first used Retina to get a general overview of the server, and it has discovered that the Guest user has access to the registry. As I'm not the kind of people who believes anything, and less if it comes froma program which can give a false alarm, I have tried to access the remote registry by myself using regedit, rededt32 and reg.exe from a W2K Pro, but with no luck. I have tried connecting after creating a null session, but it didn't work either. I could connect to other computers where I have Admin level, so it worked. How do I connect with Guest access? Is Retina wrong or I'm doing something wrong? How can I connect to a remote registry? Thanks in adavance.
Current thread:
- Access a remote registry BrainSCAN (May 15)
- Re: Access a remote registry H D Moore (May 15)
- RE: Access a remote registry Vladimir Kraljevic (May 15)
- <Possible follow-ups>
- Re: Access a remote registry H Carvey (May 18)
- RE: Access a remote registry Steve Skoronski (May 19)
- RE: Access a remote registry H C (May 19)