Collaborate Disseminate
Our company has started researching using a new tech. We started seeing banner ads for a consulting company “with expertise in” this new tech.
The recently we had a call from someone representing this consulting company.
We… Continue reading How would the identity of a company be discovered through banner ads?
Our company has started researching using a new tech. We started seeing banner ads for a consulting company “with expertise in” this new tech.
The recently we had a call from someone representing this consulting company.
We… Continue reading How would the identity of a company be discovered through banner ads?
Online advertisements (banner ads etc) provided by facebook, google et. al., can be targeted to specific audiences. Part of this targeting is powered by the search terms that a user has used.
(Incidentally I think that’s to… Continue reading How would the identity of a company be discovered through banner ads? [on hold]
is it possible to disable all rogue anonymous/ network/ server logons including ones exploiting SYSTEM & $ account, like the ones containing ie:00×37…. , random account ids/ codes, audit successful, special impersonate … Continue reading Disable anonymous logon? [on hold]
How to identify target IP address from the AD username? any tool or technique?
The intent of DHA is typically to enumerate the directory of email addresses of a target organization through NDR. I received a variation of DHA and am not sure what the attacker is trying:
Spammer successfully sends emails … Continue reading Intent of variation of Directory harvest attack (spam)
This question already has an answer here:
Generic error message for wrong password or username – is this really helpful?
9 answers
I am following the book Penetration Testing: A Hands-On Introduction to Hacking from Georgia Weidman. In Ch 13, page 296 the psexec from metasploit is used against a Windows XP Profession SP3 (32-bit), but I got the following error:
Exploit failed [no-access]: Rex::Proto::SMB::Exceptions::LoginError Login Failed: The server responded with error: STATUS_LOGON_TYPE_FAILURE (Command=115 WordCount=0)
See above options for my exploit:
I have also set the windows xp machine to behave like part of a domain:
Start –> Run.. –> secpool.msc –> Security Settings –> Local Policies –> Network access: Sharing and security model for local accounts –> Classic – Local Users authenticate as themselves.
and set it up the SMBDomain to WORKGROUP. When using enum4linux, my user (shariff) is not enumerated, but this is the one that I use to login (I also have the hash for it but again not working). Does this suggest that there is some setting that is not allowing me to connect??
This is driving me crazy.. any suggestions or ideas to fix this? username and password is correct, but still login failure error. Is there anything that I am missing?? How I can test smb to see if I can login with my user??
Continue reading PSExec not working against windows XP (metasploit)
Have there been any attacks (or can you think of a potential attack) that hinged on being able to figure out if a user exists in a system?
For example, in a web app there is a “Reset password” page where you enter an email a… Continue reading What attacks are possible if you can scrape a list of users?
While testing our Windows Domain Controller (Server 2012 R2), I was able use the Linux utility rpcclient to enumerate user accounts and groups via a Null Session (see output below).
Checking the Windows Registry keys on the … Continue reading Windows registry keys not preventing users/group enumeration via null session