Unable to find EmptyPasswords.txt in Exploitation Folder

S3cur3Th1sSh1t / WinPwn

Automation for internal Windows Penetrationtest / AD-Security

BSD 3-Clause "New" or "Revised" License

3.28k stars 515 forks source link

Closed IAMinZoho closed 2 years ago

IAMinZoho commented 2 years ago

Please check: Capture

I do have a user Tesla who has a blank password. Capture11

But there is no text file by that name. Am i missing something here ?

Thanks!

IAMinZoho commented 2 years ago

When I set UAC flag as 544, then it shows up and works fine. I am closing the task.

S3cur3Th1sSh1t commented 2 years ago

The Passwd_NotReq flag also doesn’t mean it’s actually empty. It just means that ANY password can be set.

Users with this value are queried somewhere in the domain recon checks.

IAMinZoho commented 2 years ago

Agreed, sir! Thank you.