Ok to run from non-domain-joined workstation?

[7MinSec]

Hi,

I'm trying this out on a pentest where I've got an admin cmd box open as DOMAIN\compromiseduser. When I run Locksmith it complains in red a lot about not being able to find the domain or forest (even if manually specified). I'm going to see if I can pick apart the PowerShell and found out exactly what the problems are, but if you say the project was never intended to run on a non-domain-joined workstation, I'll move along since my PS-fu is sketchy at best :-)

Thanks, Brian

[TrimarcJake]

Hey Brian! I certainly intended for Locksmith to be run from a non-domain joined machine as a treat to you dirty, dirty red teamers 😆 but it has been pretty low priority.

If you get it working, I'd love if you did a PR!

[TrimarcJake]

If you're interested in a little mentorship to improved that PS-fu, reach out! All the Locksmith friends love helping others learn.

[techspence]

@7MinSec I started down this path a while ago but never got it 100% complete. If you’d like to compare notes I’d be down to revisit it. :)