Module enums

Utils to extract data from ldap network packets

Modules

acl

constants

date

forestlevel

gplink

ldaptype

secdesc

sid

spntasks

trusts

uacflags

Structs

AccessAllowedAce

Structure for Access Allowed Ace network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/72e7c7ea-bc02-4c74-a619-818a16bf6adb

AccessAllowedObjectAce

Structure for Access Allowed Object Ace network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/c79a383c-2b3f-4655-abe7-dcbb7ce0cfbe

Ace

Structure for Ace network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/628ebb1d-c509-4ea0-a10f-77ef97ca4586

Acl

Structure for Acl network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/20233ed8-a6c6-4097-aafa-dd545ed24428

LdapSid

Structure for LDAPSID network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/f992ad60-0fe4-4b87-9fed-beb478836861

LdapSidIdentifiedAuthority

Strcuture for Sid Identified Authority network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/c6ce4275-3d90-4890-ab3a-514745e4637e

ObjectAceFlags

AceFlags

SecurityDescriptor

Structure for Security Descriptor network packet. https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/7d4dac05-9cef-4563-a058-f108abecce1d

Enums

AceFormat

Enum to get the same ouput for data switch in Ace structure.

Type

Enum to get ldap object type.

Functions

bin_to_string

Function to get uuid from bin to string format

check_spn

Function to check if spns start with mssqlsvc to make SPNTargets https://github.com/BloodHoundAD/SharpHound3/blob/master/SharpHound3/Tasks/SPNTasks.cs#L22

decode_guid

Function to decode objectGUID binary to string value. src: https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/001eec5a-7f8b-4293-9e21-ca349392db40 Thanks to: https://github.com/picketlink/picketlink/blob/master/modules/common/src/main/java/org/picketlink/common/util/LDAPUtil.java

get_flag

Get the UAC flags from “userAccountControl” LDAP attribut.

get_forest_level

Get the forest level from “msDS-Behavior-Version” LDAP attribut.

get_type

Get object type, like (“user”,“group”,“computer”,“ou”, “container”, “gpo”, “domain” “trust”).

hex_push

Function to get a hexadecimal representation from bytes Thanks to: https://newbedev.com/how-do-i-convert-a-string-to-hex-in-rust

objectsid_to_vec8

Change SID value to correct format.

parse_gmsa

Function to check the user can read Service Account password

parse_gplink

Function to parse gplink and push it in json format

parse_ntsecuritydescriptor

This function allows to parse the attribut nTSecurityDescriptor from secdesc.rs http://www.selfadsi.org/deep-inside/ad-security-descriptors.htm#SecurityDescriptorStructure

sid_maker

Function to make SID String from ldap_sid struct