> > Is there a way to discover Active Directory users > with blank passwords > > if I have domain admin privileges and local access > to my domain > > controllers?
One method I've used in the past is to write a Perl script (I know...) that enumerates the user accounts from the DC, and then attempts to log in to that account using a blank password. It's a one-shot deal, so it won't lock out the account, and you'll end up with a nice short list. Harlan ------------------------------------------ Harlan Carvey, CISSP author: "Windows Forensic Analysis" http://windowsir.blogspot.com ------------------------------------------
