Changed Get-NetGroup and Get-NetGroupMember to search for samaccountname instead of name

HarmJ0y · HarmJ0y · commit 81ac124f2211 · 2016-06-24T16:51:16.000-04:00
diff --git a/Recon/PowerView.ps1 b/Recon/PowerView.ps1
@@ -5189,7 +5189,7 @@ function Get-NetGroup {
                     $GroupSearcher.filter = "(&(objectCategory=group)(objectSID=$SID)$Filter)"
                 }
                 else {
-                    $GroupSearcher.filter = "(&(objectCategory=group)(name=$GroupName)$Filter)"
+                    $GroupSearcher.filter = "(&(objectCategory=group)(samaccountname=$GroupName)$Filter)"
                 }
                 
                 $Results = $GroupSearcher.FindAll()
@@ -5357,7 +5357,7 @@ function Get-NetGroupMember {
                     $Group = Get-NetGroup -SID $SID -Domain $TargetDomain -DomainController $TargetDomainController -Credential $Credential -FullData -PageSize $PageSize
                 }
                 $GroupDN = $Group.distinguishedname
-                $GroupFoundName = $Group.name
+                $GroupFoundName = $Group.samaccountname
 
                 if ($GroupDN) {
                     $GroupSearcher.filter = "(&(samAccountType=805306368)(memberof:1.2.840.113556.1.4.1941:=$GroupDN)$Filter)"
@@ -5372,7 +5372,7 @@ function Get-NetGroupMember {
             }
             else {
                 if ($GroupName) {
-                    $GroupSearcher.filter = "(&(objectCategory=group)(name=$GroupName)$Filter)"
+                    $GroupSearcher.filter = "(&(objectCategory=group)(samaccountname=$GroupName)$Filter)"
                 }
                 elseif ($SID) {
                     $GroupSearcher.filter = "(&(objectCategory=group)(objectSID=$SID)$Filter)"
@@ -5408,12 +5408,12 @@ function Get-NetGroupMember {
                             
                             $GroupSearcher.PropertiesToLoad.Clear()
                             [void]$GroupSearcher.PropertiesToLoad.Add("$MemberRange")
-                            [void]$GroupSearcher.PropertiesToLoad.Add("name")
+                            [void]$GroupSearcher.PropertiesToLoad.Add("samaccountname")
                             try {
                                 $Result = $GroupSearcher.FindOne()
                                 $RangedProperty = $Result.Properties.PropertyNames -like "member;range=*"
                                 $Members += $Result.Properties.item($RangedProperty)
-                                $GroupFoundName = $Result.properties.item("name")[0]
+                                $GroupFoundName = $Result.properties.item("samaccountname")[0]
 
                                 if ($Members.count -eq 0) { 
                                     $Finished = $True
@@ -5425,7 +5425,7 @@ function Get-NetGroupMember {
                         }
                     }
                     else {
-                        $GroupFoundName = $Result.properties.item("name")[0]
+                        $GroupFoundName = $Result.properties.item("samaccountname")[0]
                         $Members += $Result.Properties.item($RangedProperty)
                     }
                 }

Original file line number	Diff line number	Diff line change
`@@ -5189,7 +5189,7 @@ function Get-NetGroup {`
`5189`	`5189`	`$GroupSearcher.filter = "(&(objectCategory=group)(objectSID=$SID)$Filter)"`
`5190`	`5190`	`}`
`5191`	`5191`	`else {`
`5192`		`- $GroupSearcher.filter = "(&(objectCategory=group)(name=$GroupName)$Filter)"`
	`5192`	`+ $GroupSearcher.filter = "(&(objectCategory=group)(samaccountname=$GroupName)$Filter)"`
`5193`	`5193`	`}`
`5194`	`5194`
`5195`	`5195`	`$Results = $GroupSearcher.FindAll()`
`@@ -5357,7 +5357,7 @@ function Get-NetGroupMember {`
`5357`	`5357`	`$Group = Get-NetGroup -SID $SID -Domain $TargetDomain -DomainController $TargetDomainController -Credential $Credential -FullData -PageSize $PageSize`
`5358`	`5358`	`}`
`5359`	`5359`	`$GroupDN = $Group.distinguishedname`
`5360`		`- $GroupFoundName = $Group.name`
	`5360`	`+ $GroupFoundName = $Group.samaccountname`
`5361`	`5361`
`5362`	`5362`	`if ($GroupDN) {`
`5363`	`5363`	`$GroupSearcher.filter = "(&(samAccountType=805306368)(memberof:1.2.840.113556.1.4.1941:=$GroupDN)$Filter)"`
`@@ -5372,7 +5372,7 @@ function Get-NetGroupMember {`
`5372`	`5372`	`}`
`5373`	`5373`	`else {`
`5374`	`5374`	`if ($GroupName) {`
`5375`		`- $GroupSearcher.filter = "(&(objectCategory=group)(name=$GroupName)$Filter)"`
	`5375`	`+ $GroupSearcher.filter = "(&(objectCategory=group)(samaccountname=$GroupName)$Filter)"`
`5376`	`5376`	`}`
`5377`	`5377`	`elseif ($SID) {`
`5378`	`5378`	`$GroupSearcher.filter = "(&(objectCategory=group)(objectSID=$SID)$Filter)"`
`@@ -5408,12 +5408,12 @@ function Get-NetGroupMember {`
`5408`	`5408`
`5409`	`5409`	`$GroupSearcher.PropertiesToLoad.Clear()`
`5410`	`5410`	`[void]$GroupSearcher.PropertiesToLoad.Add("$MemberRange")`
`5411`		`- [void]$GroupSearcher.PropertiesToLoad.Add("name")`
	`5411`	`+ [void]$GroupSearcher.PropertiesToLoad.Add("samaccountname")`
`5412`	`5412`	`try {`
`5413`	`5413`	`$Result = $GroupSearcher.FindOne()`
`5414`	`5414`	`$RangedProperty = $Result.Properties.PropertyNames -like "member;range=*"`
`5415`	`5415`	`$Members += $Result.Properties.item($RangedProperty)`
`5416`		`- $GroupFoundName = $Result.properties.item("name")[0]`
	`5416`	`+ $GroupFoundName = $Result.properties.item("samaccountname")[0]`
`5417`	`5417`
`5418`	`5418`	`if ($Members.count -eq 0) {`
`5419`	`5419`	`$Finished = $True`
`@@ -5425,7 +5425,7 @@ function Get-NetGroupMember {`
`5425`	`5425`	`}`
`5426`	`5426`	`}`
`5427`	`5427`	`else {`
`5428`		`- $GroupFoundName = $Result.properties.item("name")[0]`
	`5428`	`+ $GroupFoundName = $Result.properties.item("samaccountname")[0]`
`5429`	`5429`	`$Members += $Result.Properties.item($RangedProperty)`
`5430`	`5430`	`}`
`5431`	`5431`	`}`