File tree Expand file tree Collapse file tree 4 files changed +3132
-188
lines changed
Expand file tree Collapse file tree 4 files changed +3132
-188
lines changed Original file line number Diff line number Diff line change 1+ -=v0.7=-
2+ - Initial release.
3+
4+ -=v0.8=-
5+ - Expanded delegation information pulled back.
6+ - GUID based rights assignment.
7+ - Added detection information.
8+
9+ -=v1.2=-
10+ - A number of old and new functions now support new parameters "--limit" and "--filter".
11+ - Added generic LDAP search capabilities.
12+ - Added function which takes a user or SID and converts it to a user and SID.
13+ - Modified the "--group" function. It will now either enumerate group members as before or if provided with a user, list user group memberships.
14+ - Added function to remove a user from a group.
15+ - Added function which finds all GPO objects, optionally displays their ACL.
16+ - Added function to abuse GPO permissions and add a user to the local BUILTIN\Administrators group.
17+ - Added function to abuse GPO permissions and add a token permission to a user (e.g. SeLoadDriverPrivilege).
18+ - Added function to abuse GPO permissions and add a User or Computer immediate task with or without special filtering.
19+ - Added function which can increase the User or Computer version of GPO AD objects.
20+ - Added function which lists out some default domain policy settings (e.g. MaximumPasswordAge).
21+ - Added function which can do DNS enumeration based on AD records (ADIDNS).
22+ - Added function which can identify accounts that have PASSWD_NOTREQD as part of their userAccountControl flags.
23+ - Added function which can set an SPN on an account or remove it.
24+ - Bugfix in "--spn" where it would only show the first SPN.
You can’t perform that action at this time.
0 commit comments