Teensy Script to Exfil Passwords Through Outlook

Using the previous posts CLI commands to unveil cached credentials, here is an additional implementation which will exfil the data from the users own Outlook account. Once plugged in, the Teensy will do the following: Launch an unelevated Powershell prompt (no administrative access required). Run a brief few lines of code to dump the security … More Teensy Script to Exfil Passwords Through Outlook

Teensy Script to Enforce Users Locking Screens (Non administrative Password Dump!!)

We try to express time and time again the threats posed by leaving your screen unlocked. These are often batted back with responses of: I don’t have anything private on my screen I’m only away for a minute nothing can happen Aside from changing my screensaver… what else can be done? Well this is akin to smokers … More Teensy Script to Enforce Users Locking Screens (Non administrative Password Dump!!)

Resetting a Windows Password Using Kali Live Boot and CHNTPW

If presented with a PC that no one can remember the admin pass, and the usage of your Hiron boot disk is not available due to driver support issues, you have an alternative which is to use the Kali live boot. Once booted into Kali on the local machine, you’ll need to mount the drive. … More Resetting a Windows Password Using Kali Live Boot and CHNTPW

Simulated Password Cracking with the NTDS.DIT Export – Part 2

Now we have a copy of the hashes we can sling them through John. There are several approaches to this, but for the purposes of simulating an attack its best to use 2. They are: A default JTR crack A company specific wordlist crack Basically JTR has certain options for rules. I’ve found that if you’re … More Simulated Password Cracking with the NTDS.DIT Export – Part 2

Simulated Password Cracking with the NTDS.DIT Export – Part 1

In order to check to see if passwords can be cracked or guessed by the evil-doers we have an advantage that we rarely use. By performing a simulated password crack on our existing AD users we can obtain the upper hand by finding the failing passwords before the bad guys do. Firstly we need to … More Simulated Password Cracking with the NTDS.DIT Export – Part 1