THIS WALKTHROUGH IS NOT COMPLETE OR FINISHED

AD Accounts That Do Need a Password Reset Are Marked for One

ldapsearch -x -b "dc=daswebs,dc=com" -H ldap://172.16.30.5 -D "cn=playerone,cn=Users,dc=daswebs,dc=com" -W "(objectclass=User)" | grep sAMAccountName | grep -v "$\$\|sshd\|sshd_server" | cut -d" " -f2- >> AD_USERS.txt

cp /usr/share/wordlists/rockyou.txt .

hydra -L AD_USERS.txt -P rockyou.txt -m Both -t16 smb://172.16.30.5

Dev-Web Security Recommendations Implemented

docker exec -it daspress /bin/bash

chown -R www-data .

find -type f -exec chmod 0644 {} \;

find -type d -exec chmod 0755 {} \;

Nessus SSH Problems Addressed

vi /etc/ssh/sshd_config

ciphers aes128-ctr,aes192-ctr,aes256-ctr

macs hmac-sha1,[email protected],hmac-sha2-256,hmac-sha2-512

systemctl restart sshd.service