f-bader/FindAESonly.ps1 Secret

Last active November 11, 2022 08:37

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/f-bader/4fc517bc6fe61a3d6cf534958e0c8003.js"></script>
Save f-bader/4fc517bc6fe61a3d6cf534958e0c8003 to your computer and use it in GitHub Desktop.

Download ZIP

Find all possible affected AD objects from the CVE-2022-37966 bug

Raw

FindAESonly.ps1

Get-ADobject -LDAPFilter "(&(!(msDS-SupportedEncryptionTypes:1.2.840.113556.1.4.803:=4))(|(msDS-SupportedEncryptionTypes:1.2.840.113556.1.4.803:=16)(msDS-SupportedEncryptionTypes:1.2.840.113556.1.4.803:=8)))" -Properties msDS-SupportedEncryptionTypes | Select DistinguishedName, msDS-SupportedEncryptionTypes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment