NTUSTISC - AD Note - Lab(0x04 Leak Password)

Posted on | Post modified | In |

NTUSTISC - AD Note - Lab(0x04 Leak Password)

Lecture Video: 2022/05/04 AD 安全1

Lab Time - 環境調查

Lab - Leak Password from Description

在Win2016的server manager當中,可以從Dashboard/Tools/Active Directory Users and Computers中看到整個網域使用者的部分資料,例如Name, Type和Description,而這個東西其實是所有整個網域使用者都看地到,所以不可以把機敏資料寫在這裡例如帳密之類的,就像下面截圖一樣,Fara IseabalLina Allene的密碼都被leak出去了 當然,有加入網域的帳號也看的到,從Win10的網域帳號bear中,打開PowerShell

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
$ Get-ADUser -Filter * -Proper Description | Select-object Name,Description

Name               Description
----               -----------
Administrator      Built-in account for administering the computer/domain
Guest              Built-in account for guest access to the computer/domain
DefaultAccount     A user account managed by the system.
krbtgt             Key Distribution Center Service Account
Coraline Mahalia
Gillian Marsiella
Casi Hyacinth
Mercy Edi
Cyndie Rhodie
Lucilia Lelah
Fred Carmita
Ortensia Fancy
Seana Jeanette
Logan Janeen
Cassondra Lothario
Ollie Dorita
Gertrude Felecia
Ella Randee        New User ,DefaultPassword
Anya Gypsy
Ronni Kristoforo
Maurizia Ines
Reyna Gwendolyn
Garnet Constancia
Darlleen Dorisa
Jessa Corinna
Lorne Celie
Bill Marylee
Berna Raphaela
Gabriel Diannne    Shared User
Caitrin Latia
Selestina Cassi
Carlye Chloette
Dorrie Paolina
Herminia Debby
Rosetta Lotta
Berny Kirby
Moyra Fanechka
Ranee Delinda
Orelee Peri
Shantee Marylin
Annice Eden
Stormie Natala
Glenda Dorrie
Laurena Mirelle
Casandra Cherrita
Lazaro Karoly
Lina Allene        User Password r2NE4/9:F;[k
Kiri Kath
Star Rikki
Aloise Elfrida     Shared User
Marylynne Susannah
Sherri Jacquetta
Carey Kincaid
Philippa Eugenie
Dominica Carmon
Eba Luca
Martita Juanita
Ruthie Ebony
Charis Kory
Bambi Etta
Aleda Appolonia    Shared User
Randene Lelah
Issy Eudora
Margo Sharl
Philis Gilli
Reina Claire
Corine Celesta
Lon Sonni
Joyann Sibella
Katee Annemarie
Henrieta Sabine
Daile Odetta
Marney Ranee
Marlyn Loralee
Fara Iseabal       User Password 8F%kJ2q_cVFg
Sofie Darlleen
Jori Floria        Replication Account
Alikee Perri
Karoly Nadeen
Renae Babette
Nolana Rivy
Carmelle Libbi
Sile Rhiamon
Ruthann Britta
Pietra Fern
Amabelle Gayle
Audi Rosalind
Dollie Fayina
Ricca Stefa
Kaja Brenda
Katharina Alyssa
Angelique Hilda
Linda Neda         Shared User
Jerrie Morganne
Giulietta Moyra
Erena Elinore
Lily Kristofor
Kizzee Margaux
Christi Nettle
Lilas Lindy
Celeste Kelci
Berget Celka
Babb Joanne
Andree Suki
Bear Brown
  • 帳密一、Lina Allene → r2NE4/9:F;[k
  • 帳密二、Fara Iseabal → 8F%kJ2q_cVFg