Penetration Testing mailing list archives
How to find the users with local admin rights?
From: WALI <hkhasgiwale () gmail com>
Date: Sat, 07 Apr 2007 20:42:10 +0400
Hi, on the same lines as an earlier posted who sought to find Blank passwords, I was wondering if there is a way to find out, as to who all have Local Administration Rights in my domain?
I mean, I want to Audit is if our Helpdesk personnel has scrupulously given Local Admin rights on workstations, or created user accounts with Local Admin rights for their friends/acquaintances etc.
I was wondering, if there is an alternative to restrict HelpDesk from knowing local Admin username and password and still do not effect their ability to troubleshoot a problem in case they need to have escalated rights on someone's PC?
I know, it's a bit unrelated to this topic but just brought to fore a question I sought some clues on since long.
At 06:29 PM 4/5/2007 +0200, SD List wrote:
Try this utility http://download.softerra.com/files/ldapbrowser26.msi I've used it during penetration tests. It enumerates users and a lot of information. Give it a try. Otherwise a linux good tool here http://www-unix.mcs.anl.gov/~gawor/ldap/ SD team > Hi all, > > Is there any way to get a list of Active Directory users with blank > passwords? Of course, I'm attempting to discover such user accounts with > domain admin privileges. > > Best Regards, > Igor > > ------------------------------------------------------------------------ > This List Sponsored by: Cenzic > > Need to secure your web apps? > Cenzic Hailstorm finds vulnerabilities fast. > Click the link to buy it, try it or download Hailstorm for FREE. >> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW> ------------------------------------------------------------------------ > > ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Query for blank passwords in Active Directory igor . mamuzic (Apr 04)
- Re: Query for blank passwords in Active Directory Teh Fizzgig (Apr 04)
- Re: Query for blank passwords in Active Directory Marco Ivaldi (Apr 06)
- Message not available
- Re: Query for blank passwords in Active Directory Thor (Hammer of God) (Apr 08)
- Re: Query for blank passwords in Active Directory Teh Fizzgig (Apr 04)
- Re: Query for blank passwords in Active Directory SD List (Apr 06)
- How to find the users with local admin rights? WALI (Apr 08)
- Re: How to find the users with local admin rights? Teh Fizzgig (Apr 10)
- How to find the users with local admin rights? WALI (Apr 08)