p0dalirius
diff --git a/‎.github/FUNDING.yml‎
Lines changed: 4 additions & 0 deletions b/‎.github/FUNDING.yml‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎.github/dns_wildcard.png‎
90.8 KB b/‎.github/dns_wildcard.png‎
90.8 KB
diff --git a/‎.github/example.png‎
86.2 KB b/‎.github/example.png‎
86.2 KB
diff --git a/‎.github/example_verbose.png‎
178 KB b/‎.github/example_verbose.png‎
178 KB
diff --git a/‎GhostSPN.py‎
Lines changed: 489 additions & 0 deletions b/‎GhostSPN.py‎
Lines changed: 489 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 53 additions & 1 deletion b/‎README.md‎
Lines changed: 53 additions & 1 deletion
diff --git a/‎requirements.txt‎
Lines changed: 1 addition & 0 deletions b/‎requirements.txt‎
Lines changed: 1 addition & 0 deletions
@@ -0,0 +1,4 @@
+# These are supported funding model platforms
+
+github: p0dalirius
+patreon: Podalirius
@@ -1 +1,53 @@
-# GhostSPN
+# GhostSPN
+
+<p align="center">
+    List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.
+    <br>
+    <img alt="GitHub release (latest by date)" src="https://img.shields.io/github/v/release/p0dalirius/GhostSPN">
+    <a href="https://twitter.com/intent/follow?screen_name=podalirius_" title="Follow"><img src="https://img.shields.io/twitter/follow/podalirius_?label=Podalirius&style=social"></a>
+    <a href="https://www.youtube.com/c/Podalirius_?sub_confirmation=1" title="Subscribe"><img alt="YouTube Channel Subscribers" src="https://img.shields.io/youtube/channel/subscribers/UCF_x5O7CSfr82AfNVTKOv_A?style=social"></a>
+    <br>
+</p>
+
+## Features
+
+ - [x] Lists all accounts (users, computers) with 
+ - [x] Checks for DNS wildcard presence before resolving names.
+
+## Usage of scan mode
+
+```
+GhostSPN v1.1 - by @podalirius_
+
+usage: GhostSPN.py scan [-h] [-u USERNAME] [-p PASSWORD] [-d DOMAIN] [--hashes [LMHASH]:NTHASH] [--no-pass] --dc-ip ip address [--ldaps] [-v] [--debug]
+
+options:
+  -h, --help            show this help message and exit
+
+Credentials:
+  -u USERNAME, --username USERNAME
+                        Username to authenticate to the machine.
+  -p PASSWORD, --password PASSWORD
+                        Password to authenticate to the machine. (if omitted, it will be asked unless -no-pass is specified)
+  -d DOMAIN, --domain DOMAIN
+                        Windows domain name to authenticate to the machine.
+  --hashes [LMHASH]:NTHASH
+                        NT/LM hashes (LM hash can be empty)
+  --no-pass             Don't ask for password (useful for -k)
+  --dc-ip ip address    IP Address of the domain controller. If omitted it will use the domain part (FQDN) specified in the target parameter
+  --ldaps               Use LDAPS. (default: False)
+  -v, --verbose         Verbose mode. (default: False)
+  --debug               Debug mode. (default: False)
+```
+
+## Example
+
+Example:
+
+![](./.github/example.png)
+
+## Special case: DNS wildcards
+
+In case DNS wildcards are present in the domain, GhostSPN autodetect if the entry was resolved from a wildcard entry.
+
+![](./.github/dns_wildcard.png)
@@ -0,0 +1 @@
+sectools>=1.3.9