Penetration Testing mailing list archives
Re: Query for blank passwords in Active Directory
From: Teh Fizzgig <fizzgig () foofus net>
Date: Thu, 05 Apr 2007 08:06:21 -0500
igor.mamuzic () koncar-inem hr wrote:
Hi all, Is there any way to get a list of Active Directory users with blank passwords? Of course, I'm attempting to discover such user accounts with domain admin privileges.
Do you have a list of users already or are you seeking that information as well? If you already have the user list, might I suggest medusa: http://www.foofus.net/jmk/medusa/medusa.html You want the smbnt module along with the -ns option (tests for blank username as well as username = password). It's multithreaded and pretty quick with these things. --f ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Query for blank passwords in Active Directory igor . mamuzic (Apr 04)
- Re: Query for blank passwords in Active Directory Teh Fizzgig (Apr 04)
- Re: Query for blank passwords in Active Directory Marco Ivaldi (Apr 06)
- Message not available
- Re: Query for blank passwords in Active Directory Thor (Hammer of God) (Apr 08)
- Re: Query for blank passwords in Active Directory Teh Fizzgig (Apr 04)
- Re: Query for blank passwords in Active Directory SD List (Apr 06)
- How to find the users with local admin rights? WALI (Apr 08)
- Re: How to find the users with local admin rights? Teh Fizzgig (Apr 10)
- How to find the users with local admin rights? WALI (Apr 08)