Skip to content

v2024.1.11

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 12 Jan 08:17
· 44 commits to master since this release
v2024.1.11
0161570

Commits

  • 1dc2108: Scrollbar bug for options panel (Lars Karlslund)
  • 9974f5e: JS windows initialization change (Lars Karlslund)
  • bb4fadb: Cleaned up constants in security descriptor module (Lars Karlslund)
  • b7b64d4: Added sort and limit primitives to object slices (Lars Karlslund)
  • 2251281: GUID for pwdLastSet attribute (Lars Karlslund)
  • 4cecaa4: Fixed reference to now removed constant (Lars Karlslund)
  • b167243: Go.mod reference missing somehow (Lars Karlslund)
  • 6171951: Added COSE Bilkent layout engine option (Lars Karlslund)
  • 02c07d7: Bump Gin version (Lars Karlslund)
  • 1af7c1e: PKI Attribute decoding experiment (Lars Karlslund)
  • cf21a2a: Various module upgrades (Lars Karlslund)
  • db3af8e: Added UUID datatypes to flexinit (Lars Karlslund)
  • 17451f8: Moved ParentDN to util, also create synthetic missing parents (Lars Karlslund)
  • 78768a6: More info on passwords exposed via GPO cPassword entries (Lars Karlslund)
  • 1014d17: Fixed schema parsing with superiors (Lars Karlslund)
  • 5c785ed: Fix SID collision as it has no real world chance of doing anything (Lars Karlslund)
  • ae77571: Fixed some name parsing where we're missing the netbios domain part of it (Lars Karlslund)
  • 570cef5: Update cytoscape.js to latest version (Lars Karlslund)
  • 5e1d140: Merging over SIDs was way too generic, but maybe now it's just too strict (Lars Karlslund)
  • 18b8a9d: Fix for looking up a non existing attribute (Lars Karlslund)
  • b158b9c: Switched to Bootstrap compatible UI (Halfmoon UI 2.x), upgraded jquery, jquery UI, cytoscape etc. UI improvements (and possible breakage) (Lars Karlslund)
  • f806aa3: Clarify a couple of attributes (Lars Karlslund)
  • e24e111: Missed some UI files (Lars Karlslund)
  • 79bf7b8: Added comment about reasoning to refresh merge attribute list while merging (Lars Karlslund)
  • f671596: Replaced all 'interface{}' usage with 'any' (Lars Karlslund)
  • 65c6fcf: Improved on FindOrAddAdjacentSID, and use that while parsing groups that are pointing to missing DNs (Lars Karlslund)
  • 07ea98c: Bump Gonk version (Lars Karlslund)
  • de79909: Split include and exclude queries up in seperate input fields, and also add an option to exclude last objects by query (Lars Karlslund)
  • 827571b: Go mod tidy circus (Lars Karlslund)
  • 6d7b57d: Refactored the analysis function, moved graphs to own package, minor fixes, analysis performance optimization, node limiter, start/middle/end queries rather than the convoluted mess that was before (Lars Karlslund)
  • 9057df0: The usual go mod tidy problem, arrrrrgh (Lars Karlslund)
  • 1b81a94: Default maxdepth to -1 not 99 (Lars Karlslund)
  • 12d1a63: Added minimum accumulated probability filter, fixed toasts (Lars Karlslund)
  • 68846c0: Tooltips, don't expand AU / EO option, iterator for Graph edges, backlinks fuzz implemented but not enabled in WebUI (causes chaos), graph edge can have data attached (Lars Karlslund)
  • 40ba8f0: Generalized Protected Users lookup, changed the members of Authenticated Users logic (Lars Karlslund)
  • e8cd715: Removed dark mode class on body (Lars Karlslund)
  • 8f9f1be: Got rid of the ForeignSecurityPrincipal type entirely (Lars Karlslund)
  • aeb557e: Changed tag "escalation" to "pivot" for edges internally (Lars Karlslund)
  • 20f7e73: Tooltip for query input boxes (Lars Karlslund)
  • 0a503ff: Added "extract words" feature for creating wordlist to use with hashcat rules (Lars Karlslund)
  • 92c2f16: Time decoding for BadPasswordTime (Lars Karlslund)
  • 391a863: Fixed accountexpires decoding, whoops (Lars Karlslund)
  • 7fddd34: Added split to export words, added mastodon links (Lars Karlslund)
  • 25921ed: Upgrade builds to Go 1.21 (Lars Karlslund)
  • de7730b: Attribute objectCategorySimple -> type, parsing of securitydescriptors moved to rawobject, added securitydescriptor parsing to 5 other attributes, ACLs can now print without resolving SIDs, added RBCD edge, renamed some of the meta attributes, added predefined search for Unconstrained delegation computers and Constrained delegation (Lars Karlslund)
  • 40f0f04: Rename log level function (Lars Karlslund)
  • 53ea2e3: Various attributes and edges refactoring (Lars Karlslund)
  • b8f39b4: Missed a few calls in the refactoring (Lars Karlslund)
  • 08d311c: Loglevel stuff (Lars Karlslund)
  • e736344: Constrained delegation edge (Lars Karlslund)
  • 0b8d1c4: Fixed horrible 0 edge bug I introduced yesterday (Lars Karlslund)
  • 2e09a32: Added some webservice debug functions (Lars Karlslund)
  • 97160a6: Predefined filters update (Lars Karlslund)
  • 06f46b4: Proper link to the UI in the console output (Lars Karlslund)
  • baa607a: Disable browser spell check in query textareas (Lars Karlslund)
  • 7de1a25: Effort to fix periodic window sizing glitch (Lars Karlslund)
  • d29473d: Windows collector default to current working directory rather than failing (Lars Karlslund)
  • f635426: Fix for constrained delegation edge (Lars Karlslund)
  • 2f0f37a: Default to unencrypted LDAP, added port autodetection based on tlsmode (Lars Karlslund)
  • b60c21f: Reflected Golang requirement is now 1.21 in readme (Lars Karlslund)
  • b6098dd: New teaser graph in readme (Lars Karlslund)
  • d2629c0: Switch development builds tag (Lars Karlslund)
  • 752e2de: Revamped the readme (Lars Karlslund)
  • f81bcbc: Updated year in copyright notice (Lars Karlslund)
  • 6ea7c30: Added calculation of service SIDs (Lars Karlslund)
  • 06416d5: Added SeMachineAccountPrivilege to localmachine ingestor, but no edges yet (Lars Karlslund)
  • 207c0b2: Added InheritsSecurity edge to all objects and PublishedBy attributes to Cert Templates (Lars Karlslund)
  • b899ddb: Fixed logic error in round 1 analysis which caused results to be unpredictable (Lars Karlslund)
  • 65d3dd7: New JS code to handle window behaviour (Lars Karlslund)
  • dfbc9e3: And is not or (Lars Karlslund)
  • 92bb66d: Window click-to-front working again (Lars Karlslund)
  • d73cd47: Various package updates (Lars Karlslund)
  • d2055d2: Fixed build script (Lars Karlslund)
  • b518dd3: Switched from amd64 to x64 naming in executables (Lars Karlslund)
  • 0161570: Fix for build script (Lars Karlslund)
Assets 9