Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Gaining Access to Administrator Password

Posted on 2011-04-22
Medium Priority
Last Modified: 2012-05-11
I am about to be taking over 5 networks. I am not sure if the Execs know the Admin passwords for their domain. Any ideas on how I can do a takeover without the help of the network admin?
Servers range from 2000, SBS, 2003, 2008 LINUX
Question by:mmaris

Assisted Solution

nexusds earned 664 total points
ID: 35448599
if you have a user with admin privledges already logged in, use that session to create yoruself a user with admin access. Otherwise you will have to try to hack it..
LVL 25

Assisted Solution

by:Ron Malmstead
Ron Malmstead earned 664 total points
ID: 35448611
On windows...If you do not have the domain administrator account password, you are completely hosed administratively...unless you have another domain account that has administrative permissions to reset it.

Linux...not sure about that one, i would guess it depends on the linux flavor we're talking about.

Expert Comment

ID: 35449758
I appologize and will not make that mistake again.
LVL 17

Accepted Solution

Tony Massa earned 672 total points
ID: 35450359
You can comb the DC security logs to determine where the admin user account is being used for services/scheduled tasks.  The DCs will record the IP address of the calling system, so you can check the services and scheduled tasks on those systems to find out what process is attemping to use those credentials.

Otherwise, if you are a domain admin, you can just reset the password and write it down and give it to the business owners for future use.  This account should not be used for any reason as all users should have their own username/password, and all service accounts should have their own account as well.

If the networks are small enough (a small number of servers) you should be able to check each server individually and then reset it.  If they don't know it, and you don't have admin access, you'll have to get creative...but it can be done.
LVL 72

Expert Comment

ID: 35937200
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last month Marc Laliberte, WatchGuard’s Senior Threat Analyst, contributed reviewed the three major email authentication anti-phishing technology standards: SPF, DKIM, and DMARC. Learn more in part 2 of the series originally posted in Cyber Defense …
Each password manager has its own problems in dealing with certain websites and their login methods. In Part 1, I review the Top 5 Password Managers that I've found to be the best. In Part 2 we'll look at which ones co-exist together and why it'…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question