lolcreds

Public credential defaults and exposure patterns for authorized security testing.

Citrix ADC / NetScaler

Citrixnetwork4 credentials1 default credential

Credentials4 documented
01

Default nsroot Credential

citrix-adc / default-nsroot

Citrix ADC/NetScaler appliances document the nsroot local administrator used for initial management access. The default password must be changed during setup.

static defaultuser definedsecretusername/password

Default credentials

nsroot:nsroot

Location

public interface
Citrix ADC GUI, SSH/CLI, NITRO API, and console
config file
ns.conf

local system user configuration and exported appliance config

artifact

tech support bundles, appliance backups, and config exports

02

Local System User Password

citrix-adc / local-system-user-password

ADC local system users authenticate to the management GUI, CLI, and NITRO API with command policies and partitions controlling access.

user definedsecretusername/password

Looks like

pattern
pattern

Citrix ADC ns.conf command defining a local system user; password may appear in exported commands depending on context

^add system user \S+

Location

config file
/nsconfig/ns.conf

Citrix ADC running/saved configuration

public interface
management GUI, SSH/CLI, NITRO API
secret store

password managers and automation vaults

logs

ns.log, audit logs, and NITRO traces

03

NITRO API Session Token

citrix-adc / nitro-session-token

Citrix ADC NITRO API login returns a session cookie/token used for subsequent API operations.

generated on installsecrettoken

Location

http header
Cookie

NITRO_AUTH_TOKEN or session cookie used by NITRO API clients

http response
Set-Cookie

NITRO login response setting the API session cookie

config file

automation client caches, scripts, and .env files

logs

HTTP traces and NITRO debug logs

04

SSL VPN, AAA, SNMP, and LDAP/RADIUS Secrets

citrix-adc / ssl-vpn-aaa-secrets

ADC configurations contain SSL private keys, VPN/AAA integration credentials, LDAP bind passwords, RADIUS/TACACS+ shared secrets, SNMP communities, and monitor credentials.

user definedgenerated on installsecretsecret value

Looks like

pattern
pattern

private key material for ADC SSL vServers, client certs, or management TLS

-----BEGIN (RSA |EC |ENCRYPTED |)PRIVATE KEY-----

Location

config file

/nsconfig/ns.conf, /nsconfig/ssl/, AAA actions, auth policies, monitor definitions, and VPN config

secret store

appliance backups, HSM/certificate stores, and password vaults

source code

NITRO automation, Terraform, and ADC config-as-code repositories

logs

AAA debug logs, ns.log, and packet/HTTP traces

Scope

Authorized use

LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.