Skip to content

R3alM0m1X82/FakeDCObject-Creator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

8 Commits
FakeDCObject-Creator.ps1
FakeDCObject-Creator.ps1
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 

Repository files navigation

FakeDCObject-Creator.ps1

πŸ“ Description

FakeDCObject-Creator is a PowerShell script designed for Red Team labs to automate the creation of a fake computer object with SERVER_TRUST_ACCOUNT privileges. This allows advanced Active Directory persistence.

The script:

  • Creates a fake computer account in Active Directory.
  • Moves it to the domain's LostAndFound container.
  • Modifies its userAccountControl attribute to 8192 (SERVER_TRUST_ACCOUNT) and primaryGroupID to 516, granting DCSync-like privileges.

⚠️ Usage Warning

This script is intended only for educational and authorized environments. Do not use for evil purposes.

πŸ”§ Requirements

For AD persistence, you need DA Privileges

  • Modules and tools:
    • Powermad.ps1
    • PowerView.ps1
    • ADModule-master (Microsoft.ActiveDirectory.Management.dll)
  • Permissions:
    • Domain user with sufficient rights to create computer accounts.

πŸš€ Usage

# Import the script
. C:\Tools\FakeDCObject-Creator.ps1

# Run the function with mandatory parameters
Invoke-FakeDCObjectCreation -MachineAccount FakeDCWS01 -Password P@ssw0rd! -Verbose

About

Creates a fake DC computer object for persistence.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages