CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
Path: blob/master/documentation/modules/post/windows/gather/credentials/windows_autologin.md
Views: 1904
Vulnerable Application
This module reads the registry keys associated with Microsoft Window's AutoLogin feature which keeps a plaintext version of the password in the registry.
To turn on Windows Autologin feature, follow the instructions from Microsoft.
Open registry editor (
regedit
) and navigate to:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Create the following
String Value
sAutoAdminLogin
set to1
DefaultUserName
set to the usernameDefaultPassword
set to the passwordOptional:
DefaultDomain
set to the domain
Verification Steps
Configure autologin
Start msfconsole
get a shell on a vulnerable windows computer
Do:
use post/windows/gather/credentials/windows_autologin
Do:
set session [#]
Do:
run
You should receive credentials.