Re: Scanning for blank admin passwords on a windows box

From: Olivier Busolini (olivier.busolini@wanadoo.fr)
Date: Wed Jul 24 2002 - 11:05:32 EDT

• Next message: xenolith@hushmail.com: "Null Session Enumeration on 2000"
• Previous message: Stephan Holtwisch: "tmap v1.1 (telephone network mapper) release"
• In reply to: Anders Thulin: "Re: Scanning for blank admin passwords on a windows box"
• Next in thread: Muhammad Faisal Rauf Danka: "Re: Scanning for blank admin passwords on a windows box"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

I completely agree with Anders about userinfo. The only problem is that this
tool messes up a bit on a target with a "large" (>20-30) number of users:
some weak account are not detected (blanck password, or equal to username).
So it's better to double check with another tool like the one Erwin (van der
Zwan) named.

Hope this helped,

Olivier
----- Original Message -----
From: "Anders Thulin" <Anders.Thulin@kiconsulting.se>
To: "Jason" <cisspstudy@yahoo.com>
Cc: <pen-test@securityfocus.com>
Sent: Monday, July 15, 2002 11:05 AM
Subject: Re: Scanning for blank admin passwords on a windows box

>
> Jason wrote:
>
> >
> > I am looking for a fast multithreaded tool that can scan a range of IP
> > addresses and look for blank administrator (or other user accounts)
> > passwords on a windows NT/2000 server.
>
> >
> > If it can also try the username as password, server name as password
that
> > would also be nice.
>
>
> Take a look at the multithreaded beta of userinfo 1.9 at
> http://www.clicknet.ch/chscene/chscene.php. It's not fully multithreaded,
> though -- it only does it over 64-subnets. It's also in the SecurityFocus
> tools list, but there is at least one other tool with the same name to
> confuse you.
>
> Main problem is that it reports in web page format...
>
> There are several non-mt tools that does the same thing.
>
> --
> Anders Thulin anders.thulin@kiconsulting.se 040-661 50 63
> Ki Consulting AB, Box 85, SE-201 20 Malmö, Sweden
>
>
> --------------------------------------------------------------------------

--
> This list is provided by the SecurityFocus Security Intelligence Alert
(SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security vulnerabilities please
see:
> https://alerts.securityfocus.com/
>
>
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

• Next message: xenolith@hushmail.com: "Null Session Enumeration on 2000"
• Previous message: Stephan Holtwisch: "tmap v1.1 (telephone network mapper) release"
• In reply to: Anders Thulin: "Re: Scanning for blank admin passwords on a windows box"
• Next in thread: Muhammad Faisal Rauf Danka: "Re: Scanning for blank admin passwords on a windows box"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:23 EDT