Enumerate User Information from Target: USERDUMP
The USERDUMP application is designed to gather user information from the target. Some of the information enumerated is the user RID, privileges, login times, login dates, account expiration date, network storage limitations, login hours, and much more.
From a DOS prompt type the following syntax:
userdump \\Target IP Address Target Username
The results reveal the following username Administrator details:
The User ID is 500. (This tells us that this is indeed the real Administrator account.)
The user’s password never expires.
The Administrator last logged in at 12:44 a.m. on January 16, 2004.
The account has had 9 bad password attempts.
The Administrator has only logged in to this computer 2 times.
The PasswordExp is set to 0. (This tell us that the password never expires.)
The logon hours are all set to 1. (This tells us that the Administrator can log
in 24/7.)
Other information.
The username Administrator details have been successfully enumerated via the USERDUMP application.
Exploit Data from Target Computer: USERINFO
The USERINFO application is designed to gather user information from the target. Some of the information enumerated is the user RID, privileges, login times, login dates, account expiration date, network storage limitations, login hours, and much more. An attacker uses this information in his or her social engineering phase of an attack.
From a Disc Operating System (DOS) prompt type the following syntax:
userinfo \\Target IP Address Target Username
Notice the results returned with USERINFO are identical to the USERDUMP application
0 comments:
Post a Comment