Author: Purple Magic [EST advisory board member]
Source: Evil Eight Bao China
I believe everyone is more familiar with Telnet. When Hacking is often used, the system comes with Shell, especially when injected, but the most annoying is NTLM certification. It is generally two ways to remove NTLM.
1 Upload NTML.EXE This method has a lot of disadvantages, such as: the other party has anti-virus software, many network segments block TFTP.
2 The configuration information directly written directly into the text and then executed with the shell. This approach is very troublesome.
Today, I will introduce you to the way I have been using, the bottom of the box.
That is to run the command directly:
TLNTADMN Config Sec = -NTLM
If you use it, you can run directly:
EXEC MASTER.DBO.XP_CMDSHELL 'TLNTADMN CONFIG Sec = -NTLM' -
After running, you will get the dead NTLM certification :) Hurry try it.
