Skip to content

Releases: mitchmoser/LACheck

LACheck v3.7

23 Aug 18:40
@mitchmoser mitchmoser
v3.7
327b91a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.7 Latest
Latest

Removed Environment.Exit statements to support execution within BOF projects such as inlineExecute-Assembly
Implemented DC and Domain LDAP query arguments

MD5: 6F72BF6802C3DB16B35C870E838FCDFF
SHA1: FB2F10C3A5330BF3051367ED643B625004C2601D
SHA256: 5A3F35335CC7A1F61120505E7495F6A9A6627AB84EB490F71D1D77050FDDDF3B

Assets 3
Loading

LACheck v3.6

20 Jun 19:13
@mitchmoser mitchmoser
v3.6
a38dd9a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.6

Convert UserPrincipalName format to NetBIOS username format in order to more accurately correlate domain user SIDs to enumerated sessions in BloodHound output

MD5: C061528D651DE5414246373FE3C5BCA6
SHA1: 612BF5E7CACA0821C6A3B089872FB9AEEA98C216
SHA256: 2663AAB4BEC268F7AC2B51B08681BA8214A7C1E045E9927B6690DF986B8BFEDC

Assets 3
Loading

LACheck v3.5

01 Jun 22:05
@mitchmoser mitchmoser
v3.5
d78a43e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.5

refined LDAP query & processing to gather user/SID key/value pairs for BloodHound output
print resolved netbios to fqdn to console output during service enumeration

MD5: A819FA2179F647B557CD0A1CC294694C
SHA1: D291786B1A7B8AE132461B1CAC30DAF5FA63FD87
SHA256: 5A05CED4F30F6A56AD9C885E5E4429BC47162F921353543837F1437938892768

Assets 3
Loading

LACheck v3.4

24 May 17:00
@mitchmoser mitchmoser
v3.4
6ce7cc5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.4

handled edge cases when gathering user objects with null or invalid SIDs
implemented stronger password for encrypted zip of bloodhound data

MD5: 05ABD189A6E9D871AFFFAE4F4EA8AB4C
SHA1: DA367BC4FF6A7F8E221D0DE34AA934DD9584BA0A
SHA256: 6E2AA93273EA735425EBCB50F70B20777C33A40D6C3F5F77BF9B01236B168375

Assets 3
Loading

LACheck v3.3

06 May 16:28
@mitchmoser mitchmoser
v3.3
cf311da
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.3

The "servers" and "servers-exclude-dc" LDAP filters rely on the operatingSystem LDAP attribute which is not replicated in the Global Catalog
These queries will search against the current domain only
Extra error handling has been implemented for computer objects with empty attributes

MD5: D2BCD33CFE2607975749D13073CE2690
SHA1: E40DA6EBC314D2D15FE71B670F29F0B6F6F513B5
SHA256: 99C8D041CC7B74843C6C0B85C0FCE85E66BE700CDFCD936305575CE3F9CB2195

Assets 3
Loading

LACheck v3.2

06 May 06:24
@mitchmoser mitchmoser
v3.2
6c6fdd4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.2

Implemented optional /socket argument to output BloodHound data to TCP socket instead of writing to disk
Added service enumeration to BloodHound Session info
Resolved NETBIOS names to FQDN format for more accurate correlation of users to SIDs for BloodHound Session info
Fixed bug around correlation of users to SIDs in BloodHound Session info

MD5: 9AA7308C4E206D35C7D7460D70FE9267
SHA1: 037DDD01870767F829069175E8DB757F72DBF49C
SHA256: F8244C2A843413DD35E1C3D6A59F5BF4967BD7FBFAC01C54FDC72AB6DF0B7098

Assets 3
Loading

LACheck v3.1

03 May 23:56
@mitchmoser mitchmoser
v3.1
0241b1b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.1

added status update to display progress during enumeration

MD5: 55BA80F7971233F2DBF24F97A301CBF0
SHA1: 30D26178C790090E34473EAC59C8F750DCB181F3
SHA256: 5BAA8B869CA1355D64B6C8B98E6BAA232974667D53C541A41FCE5C10AA330889

Assets 3
Loading

LACheck v3.0

30 Apr 23:27
@mitchmoser mitchmoser
v3.0
3bfe37c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v3.0

Added support for BloodHound Output

MD5: D321811BAA40E5DDC83C760709953272
SHA1: A3DBCB665778381746F22D78716DE48A8D4BCFAB
SHA256: 2E9D534022B3F1AD732D4465E362B6598A698356E8FFBD5D1F8C23872803166E

Assets 3
Loading

LACheck v2.3

29 Mar 20:17
@mitchmoser mitchmoser
v2.3
bb14313
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v2.3

EDR check recursively searches drivers directories
Added WMI Registry check

MD5: E58BDE718E19AE160700F2DD1FEBFDF0
SHA1: 05A053248C73664C4C3AB254AF8DB691F03EB0EB
SHA256: C1278F1CDCAB366DA7772EE2011DE865B04FC469EC790EAA244A5E44A02109C7

Assets 3
Loading

LACheck v2.2

24 Mar 22:05
@mitchmoser mitchmoser
v2.2
97a69a5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
LACheck v2.2

Added EDR checks
Ported all WMI enumeration to WinRM

MD5: 30C78DF3B6F8F5F9D85777A019C7B2A2
SHA1: 6DBD0440D5F834447753D4FB4E9AB054B0BCB132
SHA256: 8220AD266EAE4B207051990D8C65BE7E27612EA1EAE714DF194E3A49CEA2EE9D

Assets 3
Loading