Open 7MinSec opened 3 days ago
Hey Brian! I certainly intended for Locksmith to be run from a non-domain joined machine as a treat to you dirty, dirty red teamers 😆 but it has been pretty low priority.
If you get it working, I'd love if you did a PR!
If you're interested in a little mentorship to improved that PS-fu, reach out! All the Locksmith friends love helping others learn.
@7MinSec I started down this path a while ago but never got it 100% complete. If you’d like to compare notes I’d be down to revisit it. :)
Hi,
I'm trying this out on a pentest where I've got an admin cmd box open as DOMAIN\compromiseduser. When I run Locksmith it complains in red a lot about not being able to find the domain or forest (even if manually specified). I'm going to see if I can pick apart the PowerShell and found out exactly what the problems are, but if you say the project was never intended to run on a non-domain-joined workstation, I'll move along since my PS-fu is sketchy at best :-)
Thanks, Brian