I added support for collecting local membership of the group "Remote Management Users", which can be used to define users that can access a target machine using PowerShell remoting.
For example, I am pushing the group "Domain Users" in the local group "Remote Management Users", as it is possible to see in the screenshot below from my test domain:
and, as you can see, the user RANCARANI is able to Enter-PSSession in the domain controller:
The result within BloodHound is the following:
I added the edge CanPSRemote .
I will create the pull request for the Electron app as soon as I can.
I added support for collecting local membership of the group "Remote Management Users", which can be used to define users that can access a target machine using PowerShell remoting.
For example, I am pushing the group "Domain Users" in the local group "Remote Management Users", as it is possible to see in the screenshot below from my test domain:
and, as you can see, the user RANCARANI is able to
Enter-PSSession
in the domain controller:The result within BloodHound is the following:
I added the edge
CanPSRemote
.I will create the pull request for the Electron app as soon as I can.