Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- enum4linux
- Starting enum4linux v0.8.9 ( http://labs.portcullis.co.uk/application/enum4linux/ ) on Sat Dec 7 11:28:35 2019
- ==========================
- | Target Information |
- ==========================
- Target ........... resolute.htb
- RID Range ........ 500-550,1000-1050
- Username ......... ''
- Password ......... ''
- Known Usernames .. administrator, guest, krbtgt, domain admins, root, bin, none
- ====================================================
- | Enumerating Workgroup/Domain on resolute.htb |
- ====================================================
- [E] Can't find workgroup/domain
- ============================================
- | Nbtstat Information for resolute.htb |
- ============================================
- Looking up status of 10.10.10.169
- No reply from 10.10.10.169
- =====================================
- | Session Check on resolute.htb |
- =====================================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 437.
- [+] Server resolute.htb allows sessions using username '', password ''
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 451.
- [+] Got domain/workgroup name:
- ===========================================
- | Getting domain SID for resolute.htb |
- ===========================================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 359.
- Domain Name: MEGABANK
- Domain Sid: S-1-5-21-1392959593-3013219662-3596683436
- [+] Host is part of a domain (not a workgroup)
- ======================================
- | OS information on resolute.htb |
- ======================================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 458.
- Use of uninitialized value $os_info in concatenation (.) or string at ./enum4linux.pl line 464.
- [+] Got OS info for resolute.htb from smbclient:
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 467.
- [+] Got OS info for resolute.htb from srvinfo:
- Could not initialise srvsvc. Error was NT_STATUS_ACCESS_DENIED
- =============================
- | Users on resolute.htb |
- =============================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 866.
- index: 0x10b0 RID: 0x19ca acb: 0x00000010 Account: abigail Name: (null) Desc: (null)
- index: 0xfbc RID: 0x1f4 acb: 0x00000210 Account: Administrator Name: (null) Desc: Built-in account for administering the computer/domain
- index: 0x10b4 RID: 0x19ce acb: 0x00000010 Account: angela Name: (null) Desc: (null)
- index: 0x10bc RID: 0x19d6 acb: 0x00000010 Account: annette Name: (null) Desc: (null)
- index: 0x10bd RID: 0x19d7 acb: 0x00000010 Account: annika Name: (null) Desc: (null)
- index: 0x10b9 RID: 0x19d3 acb: 0x00000010 Account: claire Name: (null) Desc: (null)
- index: 0x10bf RID: 0x19d9 acb: 0x00000010 Account: claude Name: (null) Desc: (null)
- index: 0xfbe RID: 0x1f7 acb: 0x00000215 Account: DefaultAccount Name: (null) Desc: A user account managed by the system.
- index: 0x10b5 RID: 0x19cf acb: 0x00000010 Account: felicia Name: (null) Desc: (null)
- index: 0x10b3 RID: 0x19cd acb: 0x00000010 Account: fred Name: (null) Desc: (null)
- index: 0xfbd RID: 0x1f5 acb: 0x00000215 Account: Guest Name: (null) Desc: Built-in account for guest access to the computer/domain
- index: 0x10b6 RID: 0x19d0 acb: 0x00000010 Account: gustavo Name: (null) Desc: (null)
- index: 0xff4 RID: 0x1f6 acb: 0x00000011 Account: krbtgt Name: (null) Desc: Key Distribution Center Service Account
- index: 0x10b1 RID: 0x19cb acb: 0x00000010 Account: marcus Name: (null) Desc: (null)
- index: 0x10a9 RID: 0x457 acb: 0x00000210 Account: marko Name: Marko Novak Desc: Account created. Password set to Welcome123!
- index: 0x10c0 RID: 0x2775 acb: 0x00000010 Account: melanie Name: (null) Desc: (null)
- index: 0x10c3 RID: 0x2778 acb: 0x00000010 Account: naoki Name: (null) Desc: (null)
- index: 0x10ba RID: 0x19d4 acb: 0x00000010 Account: paulo Name: (null) Desc: (null)
- index: 0x10be RID: 0x19d8 acb: 0x00000010 Account: per Name: (null) Desc: (null)
- index: 0x10a3 RID: 0x451 acb: 0x00000210 Account: ryan Name: Ryan Bertrand Desc: (null)
- index: 0x10b2 RID: 0x19cc acb: 0x00000010 Account: sally Name: (null) Desc: (null)
- index: 0x10c2 RID: 0x2777 acb: 0x00000010 Account: simon Name: (null) Desc: (null)
- index: 0x10bb RID: 0x19d5 acb: 0x00000010 Account: steve Name: (null) Desc: (null)
- index: 0x10b8 RID: 0x19d2 acb: 0x00000010 Account: stevie Name: (null) Desc: (null)
- index: 0x10af RID: 0x19c9 acb: 0x00000010 Account: sunita Name: (null) Desc: (null)
- index: 0x10b7 RID: 0x19d1 acb: 0x00000010 Account: ulf Name: (null) Desc: (null)
- index: 0x10c1 RID: 0x2776 acb: 0x00000010 Account: zach Name: (null) Desc: (null)
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 881.
- user:[Administrator] rid:[0x1f4]
- user:[Guest] rid:[0x1f5]
- user:[krbtgt] rid:[0x1f6]
- user:[DefaultAccount] rid:[0x1f7]
- user:[ryan] rid:[0x451]
- user:[marko] rid:[0x457]
- user:[sunita] rid:[0x19c9]
- user:[abigail] rid:[0x19ca]
- user:[marcus] rid:[0x19cb]
- user:[sally] rid:[0x19cc]
- user:[fred] rid:[0x19cd]
- user:[angela] rid:[0x19ce]
- user:[felicia] rid:[0x19cf]
- user:[gustavo] rid:[0x19d0]
- user:[ulf] rid:[0x19d1]
- user:[stevie] rid:[0x19d2]
- user:[claire] rid:[0x19d3]
- user:[paulo] rid:[0x19d4]
- user:[steve] rid:[0x19d5]
- user:[annette] rid:[0x19d6]
- user:[annika] rid:[0x19d7]
- user:[per] rid:[0x19d8]
- user:[claude] rid:[0x19d9]
- user:[melanie] rid:[0x2775]
- user:[zach] rid:[0x2776]
- user:[simon] rid:[0x2777]
- user:[naoki] rid:[0x2778]
- =========================================
- | Share Enumeration on resolute.htb |
- =========================================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 640.
- smb1cli_req_writev_submit: called for dialect[SMB3_11] server[resolute.htb]
- do_connect: Connection to resolute.htb failed (Error NT_STATUS_RESOURCE_NAME_NOT_FOUND)
- Sharename Type Comment
- --------- ---- -------
- Error returning browse list: NT_STATUS_REVISION_MISMATCH
- Reconnecting with SMB1 for workgroup listing.
- Failed to connect with SMB1 -- no workgroup available
- [+] Attempting to map shares on resolute.htb
- ====================================================
- | Password Policy Information for resolute.htb |
- ====================================================
- [+] Attaching to resolute.htb using a NULL share
- [+] Trying protocol 445/SMB...
- [+] Found domain(s):
- [+] MEGABANK
- [+] Builtin
- [+] Password Info for Domain: MEGABANK
- [+] Minimum password length: 7
- [+] Password history length: 24
- [+] Maximum password age: Not Set
- [+] Password Complexity Flags: 000000
- [+] Domain Refuse Password Change: 0
- [+] Domain Password Store Cleartext: 0
- [+] Domain Password Lockout Admins: 0
- [+] Domain Password No Clear Change: 0
- [+] Domain Password No Anon Change: 0
- [+] Domain Password Complex: 0
- [+] Minimum password age: 1 day 4 minutes
- [+] Reset Account Lockout Counter: 30 minutes
- [+] Locked Account Duration: 30 minutes
- [+] Account Lockout Threshold: None
- [+] Forced Log off Time: Not Set
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 501.
- [+] Retieved partial password policy with rpcclient:
- Password Complexity: Disabled
- Minimum Password Length: 7
- ==============================
- | Groups on resolute.htb |
- ==============================
- Use of uninitialized value $global_workgroup in concatenation (.) or string at ./enum4linux.pl line 542.
- [+] Getting builtin groups:
- group:[Account Operators] rid:[0x224]
- group:[Pre-Windows 2000 Compatible Access] rid:[0x22a]
- group:[Incoming Forest Trust Builders] rid:[0x22d]
- group:[Windows Authorization Access Group] rid:[0x230]
- group:[Terminal Server License Servers] rid:[0x231]
- group:[Administrators] rid:[0x220]
- group:[Users] rid:[0x221]
- group:[Guests] rid:[0x222]
- group:[Print Operators] rid:[0x226]
- group:[Backup Operators] rid:[0x227]
- group:[Replicator] rid:[0x228]
- group:[Remote Desktop Users] rid:[0x22b]
- group:[Network Configuration Operators] rid:[0x22c]
- group:[Performance Monitor Users] rid:[0x22e]
- group:[Performance Log Users] rid:[0x22f]
- group:[Distributed COM Users] rid:[0x232]
- group:[IIS_IUSRS] rid:[0x238]
- group:[Cryptographic Operators] rid:[0x239]
- group:[Event Log Readers] rid:[0x23d]
- group:[Certificate Service DCOM Access] rid:[0x23e]
- group:[RDS Remote Access Servers] rid:[0x23f]
- group:[RDS Endpoint Servers] rid:[0x240]
- group:[RDS Management Servers] rid:[0x241]
- group:[Hyper-V Administrators] rid:[0x242]
- group:[Access Control Assistance Operators] rid:[0x243]
- group:[Remote Management Users] rid:[0x244]
- group:[System Managed Accounts Group] rid:[0x245]
- group:[Storage Replica Administrators] rid:[0x246]
- group:[Server Operators] rid:[0x225]
- Group 'Domain Users' (RID: 513) has member: MEGABANK\Administrator
- Group 'Domain Users' (RID: 513) has member: MEGABANK\DefaultAccount
- Group 'Domain Users' (RID: 513) has member: MEGABANK\krbtgt
- Group 'Domain Users' (RID: 513) has member: MEGABANK\ryan
- Group 'Domain Users' (RID: 513) has member: MEGABANK\marko
- Group 'Domain Users' (RID: 513) has member: MEGABANK\sunita
- Group 'Domain Users' (RID: 513) has member: MEGABANK\abigail
- Group 'Domain Users' (RID: 513) has member: MEGABANK\marcus
- Group 'Domain Users' (RID: 513) has member: MEGABANK\sally
- Group 'Domain Users' (RID: 513) has member: MEGABANK\fred
- Group 'Domain Users' (RID: 513) has member: MEGABANK\angela
- Group 'Domain Users' (RID: 513) has member: MEGABANK\felicia
- Group 'Domain Users' (RID: 513) has member: MEGABANK\gustavo
- Group 'Domain Users' (RID: 513) has member: MEGABANK\ulf
- Group 'Domain Users' (RID: 513) has member: MEGABANK\stevie
- Group 'Domain Users' (RID: 513) has member: MEGABANK\claire
- Group 'Domain Users' (RID: 513) has member: MEGABANK\paulo
- Group 'Domain Users' (RID: 513) has member: MEGABANK\steve
- Group 'Domain Users' (RID: 513) has member: MEGABANK\annette
- Group 'Domain Users' (RID: 513) has member: MEGABANK\annika
- Group 'Domain Users' (RID: 513) has member: MEGABANK\per
- Group 'Domain Users' (RID: 513) has member: MEGABANK\claude
- Group 'Domain Users' (RID: 513) has member: MEGABANK\melanie
- Group 'Domain Users' (RID: 513) has member: MEGABANK\zach
- Group 'Domain Users' (RID: 513) has member: MEGABANK\simon
- Group 'Domain Users' (RID: 513) has member: MEGABANK\naoki
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement