Bug fixes
This commit is contained in:
32
README.md
32
README.md
@@ -17,29 +17,25 @@ Sensitive operations are confined only to the dedicated host. In the third step,
|
||||
---
|
||||
## Operation
|
||||
### Install and update
|
||||
This tool is provided in private git repository. Installation and updating is done with cloning and pulling from this repository.
|
||||
During first run, the tool will ask for passphrase that will be used to encrypt/decrypt sensitive content.
|
||||
After installation, edit ElysiumSettings.txt, check all variables and add domains to test.
|
||||
Clone this private git repository to install or update the tool. During the first run, you will be prompted for a passphrase to encrypt/decrypt sensitive content. After installation, edit `ElysiumSettings.txt`, check all variables, and add domains to test.
|
||||
|
||||
### Update Known-Hashed Database (KHDB)
|
||||
Run script Elysium.ps1 as an administrator and choose option 1 (Update Known-Hashes Database).
|
||||
The script downloads the database from the configured storage (Azure Blob or S3-compatible), decompresses it and updates the current database.
|
||||
Run either `Elysium.ps1` or `Start.ps1` as an administrator and choose option 1 (Update Known-Hashes Database). The script will check for a newer version online and, if found, download and decompress it. If the KHDB content is encrypted, you will be prompted for the decryption password. The database is then updated from the configured storage (Azure Blob or S3-compatible).
|
||||
|
||||
### Test Weak AD passwords
|
||||
Run script Elysium.ps1 as an administrator and choose option 2 (Test Weak AD Passwords).
|
||||
The script will then ask for the domain to be tested and upon choice will ask for domain administrator password. The DA username is already provided in the script for each domain.
|
||||
The tool then connects to Domain Controller and tests all enabled users in the domain against KHDB. PDF report with findings is then generated.
|
||||
### Send current hashes for update KHDB
|
||||
Run script Elysium.ps1 as an administrator and choose option 3 (Extract and Send Hashes).
|
||||
The tool will then ask for domain and password of domain administrator. With correct credentials, the tool will then extract current hashes (no history) of non-disabled users, compresses and encrypts them and uploads them to the configured storage (Azure Blob or S3-compatible) for pickup by the tool provider.
|
||||
Run either `Elysium.ps1` or `Start.ps1` as an administrator and choose option 2 (Test Weak AD Passwords). The script will ask for the domain to be tested and then for the domain administrator password. The DA username is already provided in the script for each domain. The tool connects to the Domain Controller and tests all enabled users in the domain against KHDB. A PDF report with findings is generated.
|
||||
|
||||
### Send current hashes for KHDB update
|
||||
Run either `Elysium.ps1` or `Start.ps1` as an administrator and choose option 3 (Extract and Send Hashes). The tool will ask for the domain and password of the domain administrator. With correct credentials, the tool extracts current hashes (no history) of non-disabled users, compresses and encrypts them, and uploads them to the configured storage (Azure Blob or S3-compatible) for pickup by the tool provider.
|
||||
|
||||
S3-compatible usage notes:
|
||||
- No AWS Tools required. The scripts can sign requests using native SigV4 via .NET and HttpClient.
|
||||
- To force using AWS Tools instead, set `s3UseAwsTools = true` in `ElysiumSettings.txt` and install `AWS.Tools.S3`.
|
||||
### Uninstallation
|
||||
Run script Elysium.ps1 as an administrator and choose option 4 (Uninstall).
|
||||
The script will then delete everything and remove the passphrase variable.
|
||||
---
|
||||
## FAQ
|
||||
|
||||
### Uninstallation
|
||||
Run `Elysium.ps1` as an administrator and choose option 4 (Uninstall) to delete all files and remove the passphrase variable. Alternatively, you can manually remove the cloned repository.
|
||||
|
||||
## FAQ
|
||||
### What happens to the hashes we uploaded?
|
||||
These hashes are subjected to cracking. Any cracked hash is then added to KHDB. Hash cracking happens on dedicated air-gapped machine and all sensitive material is never decrypted outside this machine. Secure exchange of decryption keys is arranged beforehand with every client.
|
||||
### Do we need to upload the hashes?
|
||||
@@ -71,10 +67,10 @@ It should, as it is extremely sensitive operation that should never happen outsi
|
||||
---
|
||||
|
||||
## Weak password report
|
||||
This section explains in detail individual parts of weak password report.
|
||||
This section explains in detail individual parts of the weak password report.
|
||||
|
||||
1. Reversible Encryption:
|
||||
* ****Explanation:**** Accounts have passwords stored in a reversible format that can be decrypted.
|
||||
* **Explanation:** Accounts have passwords stored in a reversible format that can be decrypted.
|
||||
* **Risk Assessment:** High. Decrypted passwords can be misused easily.
|
||||
* **Possible Cause:** Legacy applications requiring plaintext password equivalents.
|
||||
* **Use:** Compatibility with older applications.
|
||||
|
||||
Reference in New Issue
Block a user