In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
NTLMInjector.ps1
README.md Create README.md Jun 8, 2017
SetNTLM.ps1

README.md

NTLMInjector

In case you didn't now how to restore the user password after you have done a user password resset (Reminder: get the hash previous with DCSync as domain admin)

Right required: user reset password (no domain admin) Works remotely

Done using SamSetInformationUser(SAMPR_USER_INTERNAL1_INFORMATION)

Know caveat: Kerberos AES256 (and other special keys) not changed

SetNTLM

Change the password based on the user hash (or password) Bonus: bypass security policies for checking password strength

(but avoid security filter which can cause problem when synchronizing password in Enterprise environment)