New-MachineAccount for a different domain.

[Pri3st]

I think a useful feature to be added is to be able to add a machine for a different domain.

Example:

• I have impersonated constr, a test.local domain user via a certificate I have dumped.
• User constr had GenericWrite permissions on the test.local DC, which is the only computer in that domain.
• Obviously, constr can laundh a RBCD attack to compromise the test.local DC.
• constr has access to a machine that belongs to a child domain, say hello.test.local
• When we try to add a new machine with New-MachineAccount the machine will be added to our current domain (hello.test.local).

It would be interesting to have the choice to add the new computer to the domain we want.

SharpAllowedToAct.exe offers that capability in order to perform the RBCD abuse when we have access to another trusted domain than the one we want to compromise.