|
-
January 31st, 2010, 06:55 PM
#8
Sorry, work got in my way of surfing Pr0n and answering posts!
If you take a 2003 server CD and install it on a server, follow default prompts and then run the wizards to configure roles, a user with no domain admin rights can capture the hashes.
That being said, with metasploit and a few other tools, you can capture account information over the wire. You will also need a detailed understanding of TCP and http://web.mit.edu/Kerberos/
It is possible to craft a packet wrapper to force information about accounts and passwords to a dmp file. However, using this type of method you would need access to the local dmp file. And a real good understanding of dot net and c sharp. For windows that is.
LDAP. Probably not the what I would use. LDAP will give you this as a regular user
Code:
dn: cn=John Doe,dc=example,dc=com
cn: John Doe
givenName: John
sn: Doe
telephoneNumber: +1 888 555 6789
telephoneNumber: +1 888 555 1232
mail: [email protected]
manager: cn=Barbara Doe,dc=example,dc=com
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
not really anything useful
objectClass: top
09:F9:11:02:9D:74:E3:5B  8:41:56:C5:63:56:88:C0
Similar Threads
-
By heatwave in forum AntiOnline's General Chit Chat
Replies: 4
Last Post: October 12th, 2012, 08:53 AM
-
By thwhomp in forum IDS & Scanner Discussions
Replies: 3
Last Post: May 5th, 2005, 08:30 PM
-
By jonathans_daddy in forum Web Security
Replies: 3
Last Post: May 4th, 2004, 04:50 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote