ad-ldap-enum icon indicating copy to clipboard operation
ad-ldap-enum copied to clipboard

Published 20 hours ago verified publisher icon CroweCybersecurity

Null Password and NTLM Hash

Open Zamanry opened this issue 1 year ago • 1 comments

On the HackTheBox machine Escape, the guest user was enabled on a DC. I attempted to authenticate using the password '' but the tool refused to accept it as a valid parameter value. Even when I used the prompt parameter, the issue arose.

Additionally, I attempted to use PassTheHash via the null NTLM hash, 31d6cfe0d16ae931b73c59d7e0c089c0, but the DC responded incorrect password.

We need to figure out the password null password (could be checking if variable exists vs. null). We also need to figure out why PassTheHash seems to not be accepted some time.

Zamanry avatar Mar 28 '23 02:03 Zamanry

Root cause issue likely: https://github.com/cannatag/ldap3/pull/1080

Zamanry avatar Sep 14 '23 18:09 Zamanry