Penetration Testing mailing list archives
RE: how to Dump users with Dial in rights?
From: "Sacha Faust" <sacha () severus org>
Date: Thu, 17 Jan 2002 20:45:57 -0500
I think this can be easely done using WQL by just entering the dial in right option in the query instead of just listing all the users. I think this should work on nt4 sp6 but not 100% sure. var machine = "."; var locator = new ActiveXObject("WbemScripting.SWbemLocator"); var service = locator.ConnectServer(machine); var wqlquery = service.ExecQuery( "SELECT Name,FullName FROM Win32_UserAccount"); var f = new Enumerator (wqlquery); for( ; !f.atEnd(); f.moveNext()){ var p = f.item(); WScript.Echo("Username : " + p.Name + '\n' + "FullName : " + p.FullName ); -----Original Message----- From: pen test [mailto:pentestlist () hotmail com] Sent: Wednesday, January 16, 2002 3:15 PM To: pen-test () securityfocus com Subject: how to Dump users with Dial in rights? I am doing an audit of a windows NT network (nt domain) and they do not have a list of users with dial in rights. Is there any tool to query and check which users have this right? They company has 1500 + employees so I am trying not to go through one by one. thanks _________________________________________________________________ Join the worlds largest e-mail service with MSN Hotmail. http://www.hotmail.com ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/ ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- how to Dump users with Dial in rights? pen test (Jan 17)
- RE: how to Dump users with Dial in rights? Damon Sisola (Jan 17)
- RE: how to Dump users with Dial in rights? Sacha Faust (Jan 18)
- <Possible follow-ups>
- RE:how to Dump users with Dial in rights? Thad Horak (Jan 17)
- RE: how to Dump users with Dial in rights? Block, Edward (Jan 17)
- RE: how to Dump users with Dial in rights? William Underwood (Jan 17)