by frank | Jun 28, 2019 | Palo Alto
Reading Time: < 1 minuteA good site to test the regex : https://regexr.com/ Event Regex: ‘An account was successfully logged on.’Username Regex: ‘Account Name: ([^-][a-zA-Z0-9-\._]+) ‘ ( this takes out the machines as they finish by...
by frank | Jun 28, 2019 | Palo Alto
Reading Time: < 1 minuteBy default the encryption method is a MD5 Salt encryption. (Same as old Linux easyily recognized by $1$AAA$BBB where AAA is the Salt and BBB is the hash).Therefor bruteforce is possible with tools like John or Hashcat (type 500).Only when it...
by frank | Jun 28, 2019 | Debug, Palo Alto
Reading Time: < 1 minuteWhen doing Credential Theft feature using the UserID information. From Uadebug files we see a lot of denied access.The following needed doing : dsmgmt.exelocal rolesadd MYDOMAIN\my_serv_user administratorsOriginal...
by frank | Jun 28, 2019 | Palo Alto
Reading Time: < 1 minuteadmin / adminconfigureset deviceconfig system ip-address 10.1.1.1 netmask 255.255.255.0 default-gateway 10.1.1.2 dns-setting servers primary 4.2.2.2commitexit show interface managementShow stats for interfaces :...
Recent Comments