Skip to content

vletoux/SpoolerScanner

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
LICENSE
 
 
README.md
 
 
SpoolerScan.ps1
 
 

README.md

SpoolerScanner

Check if the spooler (MS-RPRN) is remotely available with powershell/c#

This is a follow-up of the DerbyCon presentation "The Unintended Risks of Trusting Active Directory @ DerbyCon 2018" made by @tifkin_ (Lee Christensen), @harmj0y(Will Schroeder), @enigma0x3(Matt Nelson)

Reference:

As an alternative, it can be tested by OpenPrinter but the API does not clearly expose if the parameter is incorrect or if the service is unaccessible.

My understanding of the spooler API is:

  • if you share a printer on the network, the spooler is remotely accessible on the computer sharing the printer
  • on a domain, the DC spooler may be accessible after the printer has been shared. A restart of the service on the DC switch it to an unavailable state until the printer is browser on the DC (like in the explorer when browsing a computer and its printer)
  • else the printer is not available

About

Check if MS-RPRN is remotely available with powershell/c#

Resources

Readme

License

GPL-3.0 license
Activity

Stars

167 stars

Watchers

3 watching

Forks

47 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages