cc: add a note about resetting password after failed zerologon attempt

This commit is contained in:
Mike Salvatore 2021-02-24 13:23:46 -05:00
parent bc3283c4a5
commit b5b8d289ca
1 changed files with 4 additions and 1 deletions

View File

@ -160,7 +160,10 @@ EXPLOITER_CLASSES = {
"server domain controller by using the Netlogon Remote Protocol (MS-NRPC). " "server domain controller by using the Netlogon Remote Protocol (MS-NRPC). "
"This exploiter changes the password of a Windows server domain controller " "This exploiter changes the password of a Windows server domain controller "
"account and could prevent the victim domain controller from communicating " "account and could prevent the victim domain controller from communicating "
"with other domain controllers.", "with other domain controllers. While it attempts to undo "
"its changes and reset the password back to the original after the "
"vulnerability is exploited, this is not successful in all cases. For "
"instructions on how to reset the domain controller's password, see the documentation.",
"link": "https://www.guardicore.com/infectionmonkey/docs/reference/exploiters/zerologon/" "link": "https://www.guardicore.com/infectionmonkey/docs/reference/exploiters/zerologon/"
} }
] ]