Skip to content

Commit

Permalink
Added Enterprise Domain Controllers group membership for DCs
Browse files Browse the repository at this point in the history
  • Loading branch information
@lkarlslund
lkarlslund committed Jan 4, 2022
1 parent 48f7f5d commit 948d56e
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions modules/integrations/activedirectory/analyze/analyze-ad.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,8 @@ var (
// SchemaAdminsSID, _ = windowssecurity.SIDFromString("S-1-5-21root domain-518")
ServerOperatorsSID, _ = windowssecurity.SIDFromString("S-1-5-32-549")

EnterpriseDomainControllers, _ = windowssecurity.SIDFromString("S-1-5-9")

GPLinkCache = engine.NewAttribute("gpLinkCache")
)

Expand Down Expand Up @@ -1112,6 +1114,9 @@ func init() {
}
if uac&engine.UAC_SERVER_TRUST_ACCOUNT != 0 {
object.SetValues(engine.MetaServer, engine.AttributeValueInt(1))

// All DCs are members of Enterprise Domain Controllers
object.Pwns(ao.FindOrAddSID(EnterpriseDomainControllers), activedirectory.PwnMemberOfGroup)
}
if uac&engine.UAC_ACCOUNTDISABLE != 0 {
object.SetValues(engine.MetaAccountDisabled, engine.AttributeValueInt(1))
Expand Down

0 comments on commit 948d56e

Please sign in to comment.