I have taken up a new challenge to rest my brain from the SQL enumeration scripts. I am looking into the possibility of changing a user's password in a domain that has password complexity enabled. Also, password granularity is also disabled.
Now, I don't think I will be able to get this to work since password policies are set by Group Policy Objects (GPOs) but we currently have a need to create accounts that go against our password policies. Big security issue? Yep. Will I share the code? Maybe. But it should be known that my current employer is not responsible for which code I post to this blog as long as I don't breach any security measures or policies.
Stay tuned.
No comments:
Post a Comment