Dump the passwords (pwdump, Abel and Cain...) from SAM and crack them. Or use Microsoft's MBSA to recover weak passwords.
Alternate way is to use Hydra but since you have access to DC then that is not necessary. Goran Pizent -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: 2. travanj 2007 18:43 To: [email protected] Subject: Discovering Active Direcory users with blank passwords Is there a way to discover Active Directory users with blank passwords if I have domain admin privileges and local access to my domain controllers? Best Regards, Igor
