Secgroundzero Posted October 27, 2013 Share Posted October 27, 2013 Hi all, new member here and glad to join the forum. So here is the story. I am in the middle of a pen test which also follows a stolen laptop scenario. I have obtained a sample laptop and created a user with admin rights on it. When i try to execute commands like net users /domain i get an error that the DOMAIN.com does not exist or could not be contacted. *where DOMAIN is the domain name masked for confidentiality i know that this is a valid domain which was verified from other tests. I have also managed to get access via webmail to more than 20 accounts and verified the domain from there. I am not experience with TCP/IP configuration but this is what i did so far. ipconfig /all shows the following host name : the name of the pc primary dns suffix: DOMAIN.com Node Type : hybrid IP routing enabled : no wins proxy enabled: no dns suffix search list: DOMAIN.com, DNS.DOMAIN.com (i added the dns.DOMAIN.com) Other steps i followed was to change the dns entries in my network connection to have the dns of the organization. i also tried to find the FQDN but i was unable although zone transfers were permitted and i pretty much got everything. the domain does not respond to ping. I know that i am holding a workstation that is present on the domain and i also have valid username and password. What else could i be doing wrong because i am stuck and i need this urgently in order to escalate. thank you in advance Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.