tag:blogger.com,1999:blog-8539880144347728238.post6631748401035696993..comments2024-01-24T04:15:08.086-05:00Comments on Carnal0wnage Blog: more with rpcclientUnknownnoreply@blogger.comBlogger4125tag:blogger.com,1999:blog-8539880144347728238.post-79861892404698175282011-02-19T13:28:27.052-05:002011-02-19T13:28:27.052-05:00An alternative way to list group members from Linu...An alternative way to list group members from Linux is to use "/usr/bin/net" (part of the package samba-common-bin on Ubuntu).<br /><br />$ net rpc group members administrators -I 10.0.0.1 -Uuser%pass<br />FOO\Administrator<br />FOO\Enterprise Admins<br />FOO\Domain Admins<br /><br />enum4linux will list group members for you (it's a wrapper around rpcclient and other tools).<br /><br />http://labs.portcullis.co.uk/application/enum4linux/pentestmonkeyhttp://pentestmonkey.netnoreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-86907927902620541072010-07-04T22:51:21.841-04:002010-07-04T22:51:21.841-04:00not without patching an smbclient or winexe client...not without patching an smbclient or winexe client. foofus had one, not sure if it still works or not.<br /><br />http://www.foofus.net/~jmk/passhash.html<br /><br />however, the standard pentest tools, core,canvas,metasploit will take a hash.CGhttps://www.blogger.com/profile/11061967917509053185noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-82865262346929482402010-07-04T02:46:36.602-04:002010-07-04T02:46:36.602-04:00Hi, I have a question, Is it possible to enter NTL...Hi, I have a question, Is it possible to enter NTLM / LM Password Hash instead of Alpha numeric password in RPC Client and then login in remote machine ?Rainbow Attackshttps://www.blogger.com/profile/12109518762127793797noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-42399318574663737502010-07-01T13:00:48.657-04:002010-07-01T13:00:48.657-04:00I don't think that this will show non-Administ...I don't think that this will show non-Administrator accounts that have cloned fixed/variable ("F"/"V") values in the registry.<br /><br />You would have to inspect the registry and look for cloned F/V values of current Administrator accounts in all of the other accounts.drehttps://www.blogger.com/profile/17414510788948258195noreply@blogger.com