Merge pull request #108 from franc-pentest/fix-gmsa

Fix gmsa verbose
franc-pentest · Sep 30, 2024 · 0aba4d3 · 0aba4d3
2 parents a48f3b7 + a6f7dce
commit 0aba4d3
Show file tree

Hide file tree

Showing 2 changed files with 22 additions and 23 deletions.
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-1.0.67
+1.0.68
diff --git a/ldeep/views/ldap_activedirectory.py b/ldeep/views/ldap_activedirectory.py
@@ -782,11 +782,6 @@ def get_sddl(self, ldapfilter, base=None, scope=None):
         return result_set
 
     def get_gmsa(self, attributes):
-        try:
-            self.ldap.start_tls()
-        except Exception as e:
-            print(f"Can't retrieve gmsa, TLS needed: {e}")
-            return []
         entries = list(
             self.query("(ObjectClass=msDS-GroupManagedServiceAccount)", attributes)
         )
@@ -797,25 +792,29 @@ def get_gmsa(self, attributes):
         for entry in entries:
             sam = entry["sAMAccountName"]
             data = entry["msDS-ManagedPassword"]
-            readers = entry["msDS-GroupMSAMembership"]
-            # Find principals who can read the password
             try:
-                readers_sd = parse_ntSecurityDescriptor(readers)
-                entry["readers"] = []
-                for ace in readers_sd["DACL"]["ACEs"]:
-                    try:
-                        reader_object = list(self.resolve_sid(ace["SID"]))
-                        if reader_object:
-                            name = reader_object[0]["sAMAccountName"]
-                            if "group" in reader_object[0]["objectClass"]:
-                                name += " (group)"
-                            entry["readers"].append(name)
-                        else:
-                            entry["readers"].append(ace["SID"])
-                    except Exception:
-                        pass
+                readers = entry["msDS-GroupMSAMembership"]
             except Exception:
-                pass
+                readers = []
+            # Find principals who can read the password
+            if readers:
+                try:
+                    readers_sd = parse_ntSecurityDescriptor(readers)
+                    entry["readers"] = []
+                    for ace in readers_sd["DACL"]["ACEs"]:
+                        try:
+                            reader_object = list(self.resolve_sid(ace["SID"]))
+                            if reader_object:
+                                name = reader_object[0]["sAMAccountName"]
+                                if "group" in reader_object[0]["objectClass"]:
+                                    name += " (group)"
+                                entry["readers"].append(name)
+                            else:
+                                entry["readers"].append(ace["SID"])
+                        except Exception:
+                            pass
+                except Exception:
+                    pass
             blob = MSDS_MANAGEDPASSWORD_BLOB()
             try:
                 blob.fromString(data)