Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Zerologon restore password: mention failure in report #991

Closed
shreyamalviya opened this issue Feb 24, 2021 · 0 comments · Fixed by #998
Closed

Zerologon restore password: mention failure in report #991

shreyamalviya opened this issue Feb 24, 2021 · 0 comments · Fixed by #998
Labels
Complexity: Medium Enhancement Issue that describes an enhancement to a current feature. Impact: High

Comments

@shreyamalviya
Copy link
Contributor

Is your feature request related to a problem? Please describe.
The Zerologon exploiter may exploit a system successfully (which includes changing the domain controller (DC) password) but fail to restore the original password.

Describe the solution you'd like
To clearly communicate to the user in case the password restoration fails, we should mention it somewhere in the report explicitly, and provide a link to our documentation page where clear steps to restore the password are given (#989).

Describe alternatives you've considered
NA
@shreyamalviya shreyamalviya added Enhancement Issue that describes an enhancement to a current feature. Impact: High Complexity: Medium labels Feb 24, 2021
@VakarisZ VakarisZ mentioned this issue Feb 25, 2021
Merged
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Complexity: Medium Enhancement Issue that describes an enhancement to a current feature. Impact: High
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Zerologon password reset warning guardicore/monkey
1 participant
@shreyamalviya