diff --git a/ad_miner/sources/modules/controls/server_users_could_be_admin.py b/ad_miner/sources/modules/controls/server_users_could_be_admin.py index e4df83f..0019ba1 100644 --- a/ad_miner/sources/modules/controls/server_users_could_be_admin.py +++ b/ad_miner/sources/modules/controls/server_users_could_be_admin.py @@ -22,7 +22,7 @@ def __init__(self, arguments, requests_results) -> None: self.title = "Paths to servers" self.description = ( - "Users could gain administration privileges privileges on some servers." + "Users could gain administration privileges on some servers." ) self.interpretation = "" self.risk = "Inadequate administration rights on computers can lead to easy privilege escalation for an attacker. With a privileged account, it is possible to perform local memory looting to find credentials for example." diff --git a/ad_miner/sources/modules/controls/users_password_not_required.py b/ad_miner/sources/modules/controls/users_password_not_required.py index bd1a60a..faaac8b 100644 --- a/ad_miner/sources/modules/controls/users_password_not_required.py +++ b/ad_miner/sources/modules/controls/users_password_not_required.py @@ -21,7 +21,7 @@ def __init__(self, arguments, requests_results) -> None: self.title = "Password requirement bypass" self.description = "Those users have the attribute 'Password not required'. This attribute technically allows the account to accept blank password to be set and even override the password policy of the company." - self.risk = "Such misconfiguration could lead to some account having non compliant password suck as a blank or weak password and might be easier to compromise." + self.risk = "Such misconfiguration could lead to some account having non compliant password such as a blank or weak password and might be easier to compromise." self.poa = "Ensure that this list is empty by setting the ms-DS-User-Password-Not-Required attribute to false for every user." self.users_password_not_required = requests_results[