>_ shadow.red
notatki-hakera.pl YouTube CTF Solutions Channel ☕ Buy me a coffee
~ / Active Directory / ACL Analysis - GenericAll Rights

ACL Analysis - GenericAll Rights

Active Directory AD Enumeration windows

Inspect ACL for a target object

Get-ObjectAcl -Identity stephanie

Fields of interest: ObjectSID, ActiveDirectoryRights, SecurityIdentifier.

Resolve SIDs to names

Convert-SidToName S-1-5-21-1987370270-658905905-1781884369-1104
Convert-SidToName S-1-5-21-1987370270-658905905-1781884369-553

Find all principals with GenericAll over a group

Get-ObjectAcl -Identity "Management Department" | ? {$_.ActiveDirectoryRights -eq "GenericAll"} | select SecurityIdentifier,ActiveDirectoryRights

Bulk SID resolution

"S-1-5-21-1987370270-658905905-1781884369-512","S-1-5-21-1987370270-658905905-1781884369-1104","S-1-5-32-548","S-1-5-18","S-1-5-21-1987370270-658905905-1781884369-519" | Convert-SidToName