guervild
guervild
Hello Following our discussion on Slack. Do not hesitate to contact me if i can help. **Describe the bug** The program crashed when using NtQueueApcThreadEx Syscall. I think the problem...
Hello, New methods to list the servicePrincipalName based on this article: https://m365internals.com/2021/11/08/kerberoast-with-opsec/. To use the method, the option `--opsec` must be used. It will look for specific OU name (default...
Hey I just added a small feature to check sites in the current domain using the --site flag: ``` PS C:\Temp> .\StandIn.exe --site [?] Using DC : dc01.dojo.local |_ Domain...
Hello ! As i was a bit disappointed to not win the coin at LeHack, I try to add some functions that might help to speedrun your lab next time...
Hello Based on the article (https://posts.specterops.io/the-phantom-credentials-of-sccm-why-the-naa-wont-die-332ac7aa1ab9). I made a method to parse the objects.data file and retrieve NAA creds on disk. Example: ``` .\SharpDPAPI sccm /useobjectfile ``` or from a...
Hello There is some "edges" missing when doing a search between two nodes. Adding them enables us to find more paths.
Rework the dllforward module. For the moment the created file is hardcoded. We need to provide a way to custom easily that file.
The keysize must be 32, if a the user set a size less than that it will crash, see: https://github.com/guervild/uru/blob/main/pkg/encoder/aes.go#L26
Hey I had the following issue: `Bytes to be written to the stream exceed the Content-Length bytes size specified.` So i made a small changes, it seems to have solve...
Hello Thank you for your awesome work. I used it on internal testing with one of my tool and noticed i had to change the value of the Dll address...