SharpHound2 icon indicating copy to clipboard operation
SharpHound2 copied to clipboard

Published 20 hours ago verified publisher icon BloodHoundAD

Missing object GUID for object filter in ACE

Open vletoux opened this issue 4 years ago • 0 comments

For ACE applied to a set of objects, a guid filter is applied. Here: https://github.com/BloodHoundAD/SharpHound/blob/9d71fb7e3033a7da07cf2ba6daaebd11c09bbd7b/Sharphound2/Enumeration/ACLHelpers.cs#L30-L34

I've found some GUID missing: inetorg: 4828cc14-1437-45bc-9b07-ad6f015e5f28 OU: bf967aa5-0de6-11d0-a285-00aa003049e2 MSA: ce206244-5827-4a86-ba1c-1c0c386c1b64 gMSA: 7b8b558a-93a5-4af7-adca-c017e67f1057

That means permissions applied to these kinds of objects are ignored.

vletoux avatar Mar 29 '20 15:03 vletoux