Internal Infrastructure Pentest - Extracting NTDS.DIT File

less than 1 minute read

  • Clear text proxy credentials of putty:
    • reg query “HKCU\Software\SimonTatham\PuTTY\Sessions”
    • This lists out all available sessions with putty.
    • Use individual session names to see the ‘proxy password’ field value.