RSS

Monthly Archives: October 2010

Domain Admin

Domain Admin is one of the highest privilege levels you can have on a Windows Network. Its has all of the access of local admin. Out of the box the Domain Admin will never get the “Access Denied (5)” message. If it does it can correct the problem by granting itself access. Domain Admin grants all sorts of outrageous permissions and should be highly reserved. Remotely manage the firewall service on a computer and allow remote control. Shutdown -m \computername /f /r /t 000 to reboot a computer on your domain remotely. Remotely terminate or initialize any process of your liking. Full access to all filesystems….

In a penetration test, compromising a domain admin account is on of the last checkpoints. The ability to log in as one of these accounts means all doors are open you just need to walk through them to retrieve anything of your desiring.

Ideally you don’t want to log onto workstations with a domain admin account. If your network has password caching turned on you can run a program called cachedump and get the hash of any account that has logged on locally.

After you have the hash, using a program with the proper set of rainbow tables can crack weak passwords in seconds and strong passwords in minutes.

Also, dumping LSA secrets on a SQL server can generally give you domain admin access. If not domain admin access, the SQL service account generally has a handful of privileges you wouldn’t want anyone on your network to have.

 
Leave a comment

Posted by on October 30, 2010 in Network Admin

 

Build Your Own PC

I built my first PC when I was 16 years old. So here is the list of computers that I have owned:

1. Something dos era with a turbo 33/66 button. I primarily used this to play the wolfenstien 3d demo.
2. A windows 3.1 box… 386 era with a dot matrix printer. I used this for some school papers but mostly the game doom.
3. Pentium 200MHz gateway pc. massive 17in CRT was key for “homework”
4. Into high school now I picked out a Dell computer that I used for ages. It was a pentium 2 400MHz with 128MB of ram and a 10GB HD. Windows 98 style. I played online games such as Quake 2 on this beast.
5. Built my first PC for a friend. It cost about $1000 and was similar to my dell that the parents paid $1500+ for.
6. Bought a P4 dell laptop for college
7. Bought a used P4 Dell optiplex for $200
8. Bought a compaq P4 for $20 and refurbed it and ended up selling that one rather quickly.
9. An AMD home built form a friend for $700, 22in flat panel monitor.
10. Bought an old IBM NetVista – converted it to this linux web server
11. Used Gateway core 2 duo laptop for my wife, nice high def capability with HDMI out
12. A xbox/ xbox 360/ and droid 2 if you count those…
13. And this beast…

Item Price Description
Proc 211.99 Intel Core i7-930 Processor
Case 70.98 Cooler Master Storm Scount
PS 52.98 Corsair CMPSU-650TX 650W power supply
SSD 188.99 OCZ Vertex 2 OCZSSD2-2VTXE120G 120GB SATA II
MoBo 159.99 ASUS Sabertooth X58 1366 Intel X58 SATA 6Gb/s USB 3.0 ATX
RAM 114.99 G.SKILL 6GB 240-Pin DDR3 SDRAM 1600Mhz
Vid 109.99 PowerColor AX5770 1GBD5-H Radeon HD 5770 1GB 128-bit GDDR5 PCI Express 2.1
fan 26.98 Cooler Master Hyper 212 plus Cooler

Finding the best deals and parts that will work well together is the hardest part. Putting the thing together is a piece of cake. If you haven’t built one is a while just don’t forget CPUs have separate power plugs on the mobo now. Also, try not to get the CPU coolant compound all over the place.
I had an issue with the OCZ Mail-In-Rebate not falling into the purchase date range that Newegg said it would. Newegg wouldn’t give me the money back up they did give me a credit for the amount of the MIR.

The i7 with hyper threading presents 8 processors to Windows 7. The sweetest thing about it is how quiet it is without a hard drive(s) grinding away. It ranks a 7.4 of 7.9 on the Windows Experience Index benchmark. Similar Dell PCs cost over $2000 so you can save a bundle building you own.

http://www.slickdeals.net is where I found deals for most of the components. I managed to keep this thing under $1000 not counting the monitors. Newegg, Frys and Microcenter had everything I needed at the lowest price.

 
Leave a comment

Posted by on October 30, 2010 in Uncategorized

 

ips and oops

I have been having trouble with my wireless routers of late.

Almost everyone has a router these days. I can say that now that my parents and also the inlaws have this handy piece of computer equipment. A router is the piece of hardware that fits in-between your modem and computer connected by Ethernet cable (some are even a modem/router combo box). I have setup about 20 different small routers in my day and I would consider that not a lot of experience. I have however overcome just about every minor issue you can have with this simple piece of equipment.

Routers have a WAN port that goes to your modem and some switch ports that can go to any device of your choosing such as that sweet new internet enabled TV or a linux web server in your basement. DCHP is built into the router and assigns IPs to each device. Your device can accept this dynamically assigned address or it can have a stubborn Static IP. If you setup port forwarding in your router you should probably setup a satic ip on the endpoint device.

I had set this before on my linux box, but as most linux skills go, I had to relearn the whole thing the next time I needed to change it. I just happened to figure out a different way to do it this time too. So here is what I did today:

1. logged into router 192.168.1.1
2. changed LAN settings to 10.10.10.1
3. opened my pc’s cmd prompt and did ipconfig /release then ipconfig /renew
4. logged into router(10.10.10.1) and noticed the port forwarding had changed dynamically which was nice
5. realized I had set a static ip on my linux server and now can’t ssh to it
6. walked downstairs (gah)
7. forgot sudo password, walked upstairs (gah)
8. walked downstairs (weeze)
9. sudo vi /etc/network/interfaces
10. press insert and changed the network file
11. typed :w and ctrl-z to save and quit
12. sudo /etc/init.d/networking restart

I then connected via wifi with my droid and pinged my webserver with the “Net Status” app.

64 bytes from 10.10.10.50: icmp_seq=1 ttl=64 time=37.4 ms

Glory glory haleleluia that is over.

The other issue I have is some random wireless disconnects and no internet over the wireless connections. I use my laptop on the big screen so when I am halfway through a hulu show this is very frustrating. I have used my droid app “Wifi Analyzer” and identified 11 wireless networks. Yes the neighbors are invading but unfortunately I will have to play defense this time. I am going to switch to the channel to “1” to avoid all the default “6” channel neighbors. Hopefully this will do the trick.

The other thing I did was change my SSID or router name. It seems that windows 7 doesn’t like traveling between two wireless networks with the same name and different passwords. You could try “manage wireless networks” highlight and click remove but then you would have to remember both passwords every time you travel.

 
Leave a comment

Posted by on October 18, 2010 in Network Admin