Month: <span>March 2022</span>

Password Spraying RapidIdentity Logon Portal

March 11, 2022
Pentesting
0 Comment

In the past I had written a quick blog post on password spraying Dell SonicWALL Virtual Office.  While it wasn’t all that exciting of a post, a number of people did find it useful and having a blog for it helped people find it more easily than only being in a random Github repo or…

Read More

Manipulating User Passwords Without Mimikatz

March 8, 2022
PentestingPost Exploitation
0 Comment

There are two common reasons you may want to change a user’s password during a penetration test: You have their NT hash but not their plaintext password. Changing their password to a known plaintext value can allow you to access services in which Pass-the-Hash is not an option. You don’t have their NT hash or…

Read More