Find SPN using Organizational Units

[guervild]

Hello,

New methods to list the servicePrincipalName based on this article: https://m365internals.com/2021/11/08/kerberoast-with-opsec/. To use the method, the option --opsec must be used.

It will look for specific OU name (default : service, application), then check if these OUs contains object with SPN. Filter options can be used to replace the default keywords.

The problem is that i could not find a method to have the correct lastlogontime value, and the msDS-SupportedEncryptionTypes .

Example:

.\StandIn --spn --opsec
.\StandIn --spn --opsec --filter test

Also, i added a new function name --ous that list all the organizational units. Example:

.\StandIn --ous
.\StandIn --ous --opsec --filter test