Added a second DA win check: high integrity agent on the domain controller

byt3bl33d3r / DeathStar

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

GNU General Public License v3.0

1.57k stars 331 forks source link

Added a second DA win check: high integrity agent on the domain controller #51

Closed DanMcInerney closed 6 years ago

DanMcInerney commented 6 years ago

Originally it just checked for having a DA user but a high_integrity agent on the DC is good enough to mimikatz and dump the DC just like having a DA user.

byt3bl33d3r commented 6 years ago

Awesome, have no clue how I overlooked this scenario.

Nice work as usual sir ;)