windows-administrator-blank-password: Built-in Administrator Account Has Blank Password

日期: 2025-08-01 | 影响软件: Windows Administrator Blank Password | POC: 已公开

漏洞描述

Checks if the built-in Administrator account has a blank password.

PoC代码[已公开]

id: windows-administrator-blank-password

info:
  name: Built-in Administrator Account Has Blank Password
  author: princechaddha
  severity: high
  description: Checks if the built-in Administrator account has a blank password.
  impact: |
    An Administrator account with a blank password can be easily compromised.
  remediation: |
    Set a strong password for the built-in Administrator account.
  tags: windows,administrator,password,code,windows-audit

self-contained: true

code:
  - pre-condition: |
      IsWindows();
    engine:
      - powershell
      - powershell.exe
    args:
      - -ExecutionPolicy
      - Bypass
    pattern: "*.ps1"
    source: |
      $PasswordRequired = (net user Administrator | Select-String "Password required").Line
      Write-Host "$PasswordRequired"

    matchers:
      - type: word
        words:
          - "Password required            No"
# digest: 4b0a00483046022100d8af242aae5de0a820d83edf8e7d366870463297a7981ed71cf000348342d466022100829f655b70e38081b6ffb3847fd7691e98f4fc77c00fef77f4545d14d1e5886b:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/./code/windows/audit/windows-administrator-blank-password.yaml