Additional Organizational Units ACLs

[q-roland]

Description

This pull request adds the collection of two ACLs related to Organizational Units: GenericWrite and Manage Group Policy Links. The motivation behind the pull request is described in the following article: https://www.synacktiv.com/publications/ounedpy-exploiting-hidden-organizational-units-acl-attack-vectors-in-active-directory

Motivation and Context

This is a new feature adding two potentially exploitable OU ACLs to the collector. Note that a similar pull request was created for the python collector BloodHound.py. An additional pull request was created for the Specterops BloodHound GUI, in order to create two new edges associated with the GenericWrite and Manage Group Policy Links OU ACLs.

How Has This Been Tested?

Various domain extracts with the SharpHound binary built with the modified SharpHoundCommon DLL have been performed and result in the collection of the GenericWrite and Manage Group Policy Links permissions on OUs as expected.

Types of changes

• [ ] Chore (a change that does not modify the application functionality)
• [ ] Bug fix (non-breaking change which fixes an issue)
• [x] New feature (non-breaking change which adds functionality)
• [ ] Breaking change (fix or feature that would cause existing functionality to change)

Checklist:

• [ ] Documentation updates are needed, and have been made accordingly.
• [ ] I have added and/or updated tests to cover my changes.
• [ ] All new and existing tests passed.
• [ ] My changes include a database migration.

About this part, I do not think that documentation updates are necessary, nor the addition of tests, but feel free to correct me if I am wrong !

I am at your disposal for any further information

[github-actions[bot]]

CLA Assistant Lite bot All contributors have signed the CLA ✍️ ✅

[q-roland]

I have read the CLA Document and I hereby sign the CLA

[superlinkx]

Holding off for one more cycle as we ingest some additional SharpHound improvements. Ready to go otherwise.