If you have an Active Directory environment, you want to make it as secure as possible. ADBrute allows you to test the security of your Active Directory users. When a users network account of a domain user expires or when the user account is locked due to incorrect login attempts, the domain administrator may reset the password to the default password based on company policy. If your users do not change their password after it has been reset by the administrator, it creates a major security hole in your security.
A malicious user could easily use the default password to login into the victim’s user accounts, delete, read and send mails or access other resources on the network.
ADBrute is simple to use:
- Run ADBrute.
- Enter the name of the domain controller and valid login credentials to connect to the Active Directory. The user can be any user on the domain.
- Click on Login and wait till the entire user list for your organization is populated from the AD.
- You can double click on a User to view additional information.
- Enter the default password for your organization and press the start button.
- Sit back until the program scans and enumerates users who use the default password.
- You can export both the lists, the entire user list as well as the weak user list to three different file formats, .csv, .txt and .xls.
You can get more information and download the tool here.