StandIn icon indicating copy to clipboard operation
StandIn copied to clipboard

Published 20 hours ago verified publisher icon FuzzySecurity

Fixed PR for Authorized Signature Modification

Open b1gbroth3r opened this issue 3 years ago • 1 comments

@FuzzySecurity here's the fixed PR, feel free to delete the original monstrosity I posted Confirming authorized signatures are required:

C:\temp>StandIn.exe --adcs --filter HomelabTemplate

[+] Search Base  : LDAP://CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=EVILCORP,DC=local

[>] Certificate Authority  : EVILCORP-ADCS-CA
    |_ DNS Hostname        : ADCS.EVILCORP.local
    |_ Cert DN             : CN=EVILCORP-ADCS-CA, DC=EVILCORP, DC=local
    |_ GUID                : b871e353-bd19-4bb1-b9a3-12114defce9e
    |_ Published Templates : HomelabTemplate
                             SmartcardLogon
                             DirectoryEmailReplication
                             DomainControllerAuthentication
                             KerberosAuthentication
                             EFSRecovery
                             EFS
                             DomainController
                             WebServer
                             Machine
                             User
                             SubCA
                             Administrator

[>] Publishing CA          : EVILCORP-ADCS-CA
    |_ Template            : HomelabTemplate
    |_ Signatures          : 1

Removing the signature requirement

C:\temp>StandIn.exe --adcs --filter HomelabTemplate --signature --remove 

[+] Search Base  : LDAP://CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=EVILCORP,DC=local

[>] Publishing CA          : EVILCORP-ADCS-CA
    |_ Template            : HomelabTemplate
    |_ Enroll Flags        : PUBLISH_TO_DS, AUTO_ENROLLMENT
    |_ Name Flags          : SUBJECT_ALT_REQUIRE_UPN, SUBJECT_REQUIRE_DIRECTORY_PATH
    |_ pKIExtendedKeyUsage : Smart Card Logon
    |                        Client Authentication
    |_ Created             : 12/4/2021 2:08:32 AM
    |_ Modified            : 12/6/2021 2:36:30 AM

[+] Removing msPKI-RA-Signature Flag..
    |_ Success

Confirmation the operation was successful:

C:\temp>StandIn.exe --adcs --filter HomelabTemplate

[+] Search Base  : LDAP://CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=EVILCORP,DC=local

[>] Certificate Authority  : EVILCORP-ADCS-CA
    |_ DNS Hostname        : ADCS.EVILCORP.local
    |_ Cert DN             : CN=EVILCORP-ADCS-CA, DC=EVILCORP, DC=local
    |_ GUID                : b871e353-bd19-4bb1-b9a3-12114defce9e
    |_ Published Templates : HomelabTemplate
                             SmartcardLogon
                             DirectoryEmailReplication
                             DomainControllerAuthentication
                             KerberosAuthentication
                             EFSRecovery
                             EFS
                             DomainController
                             WebServer
                             Machine
                             User
                             SubCA
                             Administrator

[>] Publishing CA          : EVILCORP-ADCS-CA
    |_ Template            : HomelabTemplate
    |_ Signatures          : 0

b1gbroth3r avatar Dec 08 '21 20:12 b1gbroth3r

Thanks again for writing such an awesome tool!

b1gbroth3r avatar Mar 09 '22 02:03 b1gbroth3r