Escolar Documentos
Profissional Documentos
Cultura Documentos
I want to look at the RID allocation table for a DC. What do I do?
In Command prompt type
C:\>dcdiag /test:ridmanager /s:<dcname> /v
Here dcname is the name of our DC
Labels: Active Directory
How would you find all users that have not logged on since last month?
You can use DSQuery user command for this purpose. DS commands are used to retrieve
information from Active Directory through command line. To use DSQuery, you must run
data:text/html;charset=utf-8,%3Cdiv%20class%3D%22post-outer%22%20style%3D%22color%3A%20rgb(34%2C%2034%2C%2034)%3B%20font-family%3A
1/5
6/25/2015
theDSQuery command from an elevated command prompt. To open an elevated command prompt,
click Start, right-click Command Prompt, and then click Run as administrator.
C:\>dsquery user -inactive 4
"CN=Service User,OU=IT,DC=nishantsoft,DC=com"
"CN=IT JOURNAL,OU=Management,OU=Gurgaon,DC= nishantsoft,DC= com "
"CN=Dipak Khanna,OU=RC,OU=Gurgaon,DC= nishantsoft,DC= com "
"CN=Amit Mishra,OU=RC,OU=Gurgaon,DC= nishantsoft,DC= com "
"CN=Test Account,OU=Development,OU=Gurgaon,DC= nishantsoft,DC= com "
"CN=Jeevan Singh,OU=Development,OU=Gurgaon,DC= nishantsoft,DC= com "
Labels: Active Directory
data:text/html;charset=utf-8,%3Cdiv%20class%3D%22post-outer%22%20style%3D%22color%3A%20rgb(34%2C%2034%2C%2034)%3B%20font-family%3A
2/5
6/25/2015
What tool would I use to try to grab security related packets from the
wire?
Network tap is best solution for grabbing data packet in a network. It is a hardware device which
provides a way to access the data flowing across a computer network. Computer networks,
including the Internet, are collections of devices, such as computers, routers, and switches that
are connected to each other.
Network taps are commonly used for security applications because they are non-obtrusive, are not
detectable on the network, can deal with full-duplex and non-shared networks, and will usually
data:text/html;charset=utf-8,%3Cdiv%20class%3D%22post-outer%22%20style%3D%22color%3A%20rgb(34%2C%2034%2C%2034)%3B%20font-family%3A
3/5
6/25/2015
4/5
6/25/2015
http://blog.teusink.net/2009/08/passwords-stored-using-reversible_26.html
He also developed a nice tool called RevDump to decipher this encrypted password.
data:text/html;charset=utf-8,%3Cdiv%20class%3D%22post-outer%22%20style%3D%22color%3A%20rgb(34%2C%2034%2C%2034)%3B%20font-family%3A
5/5