├── SharpLdapWhoami.sln
├── SharpLdapWhoami
├── Properties
│ └── AssemblyInfo.cs
├── SharpLdapWhoami.csproj
└── Program.cs
├── .gitattributes
└── .gitignore
/SharpLdapWhoami.sln:
--------------------------------------------------------------------------------
1 |
2 | Microsoft Visual Studio Solution File, Format Version 12.00
3 | # Visual Studio Version 16
4 | VisualStudioVersion = 16.0.31624.102
5 | MinimumVisualStudioVersion = 10.0.40219.1
6 | Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "SharpLdapWhoami", "SharpLdapWhoami\SharpLdapWhoami.csproj", "{55E915DB-92B8-406B-90E6-9B5C73C943A5}"
7 | EndProject
8 | Global
9 | GlobalSection(SolutionConfigurationPlatforms) = preSolution
10 | Debug|Any CPU = Debug|Any CPU
11 | Release|Any CPU = Release|Any CPU
12 | EndGlobalSection
13 | GlobalSection(ProjectConfigurationPlatforms) = postSolution
14 | {55E915DB-92B8-406B-90E6-9B5C73C943A5}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
15 | {55E915DB-92B8-406B-90E6-9B5C73C943A5}.Debug|Any CPU.Build.0 = Debug|Any CPU
16 | {55E915DB-92B8-406B-90E6-9B5C73C943A5}.Release|Any CPU.ActiveCfg = Release|Any CPU
17 | {55E915DB-92B8-406B-90E6-9B5C73C943A5}.Release|Any CPU.Build.0 = Release|Any CPU
18 | EndGlobalSection
19 | GlobalSection(SolutionProperties) = preSolution
20 | HideSolutionNode = FALSE
21 | EndGlobalSection
22 | GlobalSection(ExtensibilityGlobals) = postSolution
23 | SolutionGuid = {EB78184F-05A5-4D5F-85DB-05B7E0C07D01}
24 | EndGlobalSection
25 | EndGlobal
26 |
--------------------------------------------------------------------------------
/SharpLdapWhoami/Properties/AssemblyInfo.cs:
--------------------------------------------------------------------------------
1 | using System.Reflection;
2 | using System.Runtime.CompilerServices;
3 | using System.Runtime.InteropServices;
4 |
5 | // General Information about an assembly is controlled through the following
6 | // set of attributes. Change these attribute values to modify the information
7 | // associated with an assembly.
8 | [assembly: AssemblyTitle("SharpLdapWhoami")]
9 | [assembly: AssemblyDescription("")]
10 | [assembly: AssemblyConfiguration("")]
11 | [assembly: AssemblyCompany("")]
12 | [assembly: AssemblyProduct("SharpLdapWhoami")]
13 | [assembly: AssemblyCopyright("Copyright © 2022")]
14 | [assembly: AssemblyTrademark("")]
15 | [assembly: AssemblyCulture("")]
16 |
17 | // Setting ComVisible to false makes the types in this assembly not visible
18 | // to COM components. If you need to access a type in this assembly from
19 | // COM, set the ComVisible attribute to true on that type.
20 | [assembly: ComVisible(false)]
21 |
22 | // The following GUID is for the ID of the typelib if this project is exposed to COM
23 | [assembly: Guid("55e915db-92b8-406b-90e6-9b5c73c943a5")]
24 |
25 | // Version information for an assembly consists of the following four values:
26 | //
27 | // Major Version
28 | // Minor Version
29 | // Build Number
30 | // Revision
31 | //
32 | // You can specify all the values or you can default the Build and Revision Numbers
33 | // by using the '*' as shown below:
34 | // [assembly: AssemblyVersion("1.0.*")]
35 | [assembly: AssemblyVersion("1.0.0.0")]
36 | [assembly: AssemblyFileVersion("1.0.0.0")]
37 |
--------------------------------------------------------------------------------
/SharpLdapWhoami/SharpLdapWhoami.csproj:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | Debug
6 | AnyCPU
7 | {55E915DB-92B8-406B-90E6-9B5C73C943A5}
8 | Exe
9 | SharpLdapWhoami
10 | SharpLdapWhoami
11 | v4.0
12 | 512
13 | true
14 |
15 |
16 | AnyCPU
17 | true
18 | full
19 | false
20 | bin\Debug\
21 | DEBUG;TRACE
22 | prompt
23 | 4
24 |
25 |
26 | AnyCPU
27 | pdbonly
28 | true
29 | bin\Release\
30 | TRACE
31 | prompt
32 | 4
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
--------------------------------------------------------------------------------
/.gitattributes:
--------------------------------------------------------------------------------
1 | ###############################################################################
2 | # Set default behavior to automatically normalize line endings.
3 | ###############################################################################
4 | * text=auto
5 |
6 | ###############################################################################
7 | # Set default behavior for command prompt diff.
8 | #
9 | # This is need for earlier builds of msysgit that does not have it on by
10 | # default for csharp files.
11 | # Note: This is only used by command line
12 | ###############################################################################
13 | #*.cs diff=csharp
14 |
15 | ###############################################################################
16 | # Set the merge driver for project and solution files
17 | #
18 | # Merging from the command prompt will add diff markers to the files if there
19 | # are conflicts (Merging from VS is not affected by the settings below, in VS
20 | # the diff markers are never inserted). Diff markers may cause the following
21 | # file extensions to fail to load in VS. An alternative would be to treat
22 | # these files as binary and thus will always conflict and require user
23 | # intervention with every merge. To do so, just uncomment the entries below
24 | ###############################################################################
25 | #*.sln merge=binary
26 | #*.csproj merge=binary
27 | #*.vbproj merge=binary
28 | #*.vcxproj merge=binary
29 | #*.vcproj merge=binary
30 | #*.dbproj merge=binary
31 | #*.fsproj merge=binary
32 | #*.lsproj merge=binary
33 | #*.wixproj merge=binary
34 | #*.modelproj merge=binary
35 | #*.sqlproj merge=binary
36 | #*.wwaproj merge=binary
37 |
38 | ###############################################################################
39 | # behavior for image files
40 | #
41 | # image files are treated as binary by default.
42 | ###############################################################################
43 | #*.jpg binary
44 | #*.png binary
45 | #*.gif binary
46 |
47 | ###############################################################################
48 | # diff behavior for common document formats
49 | #
50 | # Convert binary document formats to text before diffing them. This feature
51 | # is only available from the command line. Turn it on by uncommenting the
52 | # entries below.
53 | ###############################################################################
54 | #*.doc diff=astextplain
55 | #*.DOC diff=astextplain
56 | #*.docx diff=astextplain
57 | #*.DOCX diff=astextplain
58 | #*.dot diff=astextplain
59 | #*.DOT diff=astextplain
60 | #*.pdf diff=astextplain
61 | #*.PDF diff=astextplain
62 | #*.rtf diff=astextplain
63 | #*.RTF diff=astextplain
64 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | ## Ignore Visual Studio temporary files, build results, and
2 | ## files generated by popular Visual Studio add-ons.
3 | ##
4 | ## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore
5 |
6 | # User-specific files
7 | *.rsuser
8 | *.suo
9 | *.user
10 | *.userosscache
11 | *.sln.docstates
12 |
13 | # User-specific files (MonoDevelop/Xamarin Studio)
14 | *.userprefs
15 |
16 | # Mono auto generated files
17 | mono_crash.*
18 |
19 | # Build results
20 | [Dd]ebug/
21 | [Dd]ebugPublic/
22 | [Rr]elease/
23 | [Rr]eleases/
24 | x64/
25 | x86/
26 | [Ww][Ii][Nn]32/
27 | [Aa][Rr][Mm]/
28 | [Aa][Rr][Mm]64/
29 | bld/
30 | [Bb]in/
31 | [Oo]bj/
32 | [Oo]ut/
33 | [Ll]og/
34 | [Ll]ogs/
35 |
36 | # Visual Studio 2015/2017 cache/options directory
37 | .vs/
38 | # Uncomment if you have tasks that create the project's static files in wwwroot
39 | #wwwroot/
40 |
41 | # Visual Studio 2017 auto generated files
42 | Generated\ Files/
43 |
44 | # MSTest test Results
45 | [Tt]est[Rr]esult*/
46 | [Bb]uild[Ll]og.*
47 |
48 | # NUnit
49 | *.VisualState.xml
50 | TestResult.xml
51 | nunit-*.xml
52 |
53 | # Build Results of an ATL Project
54 | [Dd]ebugPS/
55 | [Rr]eleasePS/
56 | dlldata.c
57 |
58 | # Benchmark Results
59 | BenchmarkDotNet.Artifacts/
60 |
61 | # .NET Core
62 | project.lock.json
63 | project.fragment.lock.json
64 | artifacts/
65 |
66 | # ASP.NET Scaffolding
67 | ScaffoldingReadMe.txt
68 |
69 | # StyleCop
70 | StyleCopReport.xml
71 |
72 | # Files built by Visual Studio
73 | *_i.c
74 | *_p.c
75 | *_h.h
76 | *.ilk
77 | *.meta
78 | *.obj
79 | *.iobj
80 | *.pch
81 | *.pdb
82 | *.ipdb
83 | *.pgc
84 | *.pgd
85 | *.rsp
86 | *.sbr
87 | *.tlb
88 | *.tli
89 | *.tlh
90 | *.tmp
91 | *.tmp_proj
92 | *_wpftmp.csproj
93 | *.log
94 | *.vspscc
95 | *.vssscc
96 | .builds
97 | *.pidb
98 | *.svclog
99 | *.scc
100 |
101 | # Chutzpah Test files
102 | _Chutzpah*
103 |
104 | # Visual C++ cache files
105 | ipch/
106 | *.aps
107 | *.ncb
108 | *.opendb
109 | *.opensdf
110 | *.sdf
111 | *.cachefile
112 | *.VC.db
113 | *.VC.VC.opendb
114 |
115 | # Visual Studio profiler
116 | *.psess
117 | *.vsp
118 | *.vspx
119 | *.sap
120 |
121 | # Visual Studio Trace Files
122 | *.e2e
123 |
124 | # TFS 2012 Local Workspace
125 | $tf/
126 |
127 | # Guidance Automation Toolkit
128 | *.gpState
129 |
130 | # ReSharper is a .NET coding add-in
131 | _ReSharper*/
132 | *.[Rr]e[Ss]harper
133 | *.DotSettings.user
134 |
135 | # TeamCity is a build add-in
136 | _TeamCity*
137 |
138 | # DotCover is a Code Coverage Tool
139 | *.dotCover
140 |
141 | # AxoCover is a Code Coverage Tool
142 | .axoCover/*
143 | !.axoCover/settings.json
144 |
145 | # Coverlet is a free, cross platform Code Coverage Tool
146 | coverage*.json
147 | coverage*.xml
148 | coverage*.info
149 |
150 | # Visual Studio code coverage results
151 | *.coverage
152 | *.coveragexml
153 |
154 | # NCrunch
155 | _NCrunch_*
156 | .*crunch*.local.xml
157 | nCrunchTemp_*
158 |
159 | # MightyMoose
160 | *.mm.*
161 | AutoTest.Net/
162 |
163 | # Web workbench (sass)
164 | .sass-cache/
165 |
166 | # Installshield output folder
167 | [Ee]xpress/
168 |
169 | # DocProject is a documentation generator add-in
170 | DocProject/buildhelp/
171 | DocProject/Help/*.HxT
172 | DocProject/Help/*.HxC
173 | DocProject/Help/*.hhc
174 | DocProject/Help/*.hhk
175 | DocProject/Help/*.hhp
176 | DocProject/Help/Html2
177 | DocProject/Help/html
178 |
179 | # Click-Once directory
180 | publish/
181 |
182 | # Publish Web Output
183 | *.[Pp]ublish.xml
184 | *.azurePubxml
185 | # Note: Comment the next line if you want to checkin your web deploy settings,
186 | # but database connection strings (with potential passwords) will be unencrypted
187 | *.pubxml
188 | *.publishproj
189 |
190 | # Microsoft Azure Web App publish settings. Comment the next line if you want to
191 | # checkin your Azure Web App publish settings, but sensitive information contained
192 | # in these scripts will be unencrypted
193 | PublishScripts/
194 |
195 | # NuGet Packages
196 | *.nupkg
197 | # NuGet Symbol Packages
198 | *.snupkg
199 | # The packages folder can be ignored because of Package Restore
200 | **/[Pp]ackages/*
201 | # except build/, which is used as an MSBuild target.
202 | !**/[Pp]ackages/build/
203 | # Uncomment if necessary however generally it will be regenerated when needed
204 | #!**/[Pp]ackages/repositories.config
205 | # NuGet v3's project.json files produces more ignorable files
206 | *.nuget.props
207 | *.nuget.targets
208 |
209 | # Microsoft Azure Build Output
210 | csx/
211 | *.build.csdef
212 |
213 | # Microsoft Azure Emulator
214 | ecf/
215 | rcf/
216 |
217 | # Windows Store app package directories and files
218 | AppPackages/
219 | BundleArtifacts/
220 | Package.StoreAssociation.xml
221 | _pkginfo.txt
222 | *.appx
223 | *.appxbundle
224 | *.appxupload
225 |
226 | # Visual Studio cache files
227 | # files ending in .cache can be ignored
228 | *.[Cc]ache
229 | # but keep track of directories ending in .cache
230 | !?*.[Cc]ache/
231 |
232 | # Others
233 | ClientBin/
234 | ~$*
235 | *~
236 | *.dbmdl
237 | *.dbproj.schemaview
238 | *.jfm
239 | *.pfx
240 | *.publishsettings
241 | orleans.codegen.cs
242 |
243 | # Including strong name files can present a security risk
244 | # (https://github.com/github/gitignore/pull/2483#issue-259490424)
245 | #*.snk
246 |
247 | # Since there are multiple workflows, uncomment next line to ignore bower_components
248 | # (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)
249 | #bower_components/
250 |
251 | # RIA/Silverlight projects
252 | Generated_Code/
253 |
254 | # Backup & report files from converting an old project file
255 | # to a newer Visual Studio version. Backup files are not needed,
256 | # because we have git ;-)
257 | _UpgradeReport_Files/
258 | Backup*/
259 | UpgradeLog*.XML
260 | UpgradeLog*.htm
261 | ServiceFabricBackup/
262 | *.rptproj.bak
263 |
264 | # SQL Server files
265 | *.mdf
266 | *.ldf
267 | *.ndf
268 |
269 | # Business Intelligence projects
270 | *.rdl.data
271 | *.bim.layout
272 | *.bim_*.settings
273 | *.rptproj.rsuser
274 | *- [Bb]ackup.rdl
275 | *- [Bb]ackup ([0-9]).rdl
276 | *- [Bb]ackup ([0-9][0-9]).rdl
277 |
278 | # Microsoft Fakes
279 | FakesAssemblies/
280 |
281 | # GhostDoc plugin setting file
282 | *.GhostDoc.xml
283 |
284 | # Node.js Tools for Visual Studio
285 | .ntvs_analysis.dat
286 | node_modules/
287 |
288 | # Visual Studio 6 build log
289 | *.plg
290 |
291 | # Visual Studio 6 workspace options file
292 | *.opt
293 |
294 | # Visual Studio 6 auto-generated workspace file (contains which files were open etc.)
295 | *.vbw
296 |
297 | # Visual Studio LightSwitch build output
298 | **/*.HTMLClient/GeneratedArtifacts
299 | **/*.DesktopClient/GeneratedArtifacts
300 | **/*.DesktopClient/ModelManifest.xml
301 | **/*.Server/GeneratedArtifacts
302 | **/*.Server/ModelManifest.xml
303 | _Pvt_Extensions
304 |
305 | # Paket dependency manager
306 | .paket/paket.exe
307 | paket-files/
308 |
309 | # FAKE - F# Make
310 | .fake/
311 |
312 | # CodeRush personal settings
313 | .cr/personal
314 |
315 | # Python Tools for Visual Studio (PTVS)
316 | __pycache__/
317 | *.pyc
318 |
319 | # Cake - Uncomment if you are using it
320 | # tools/**
321 | # !tools/packages.config
322 |
323 | # Tabs Studio
324 | *.tss
325 |
326 | # Telerik's JustMock configuration file
327 | *.jmconfig
328 |
329 | # BizTalk build output
330 | *.btp.cs
331 | *.btm.cs
332 | *.odx.cs
333 | *.xsd.cs
334 |
335 | # OpenCover UI analysis results
336 | OpenCover/
337 |
338 | # Azure Stream Analytics local run output
339 | ASALocalRun/
340 |
341 | # MSBuild Binary and Structured Log
342 | *.binlog
343 |
344 | # NVidia Nsight GPU debugger configuration file
345 | *.nvuser
346 |
347 | # MFractors (Xamarin productivity tool) working folder
348 | .mfractor/
349 |
350 | # Local History for Visual Studio
351 | .localhistory/
352 |
353 | # BeatPulse healthcheck temp database
354 | healthchecksdb
355 |
356 | # Backup folder for Package Reference Convert tool in Visual Studio 2017
357 | MigrationBackup/
358 |
359 | # Ionide (cross platform F# VS Code tools) working folder
360 | .ionide/
361 |
362 | # Fody - auto-generated XML schema
363 | FodyWeavers.xsd
--------------------------------------------------------------------------------
/SharpLdapWhoami/Program.cs:
--------------------------------------------------------------------------------
1 | using System;
2 | using System.Collections.Generic;
3 | using System.Text;
4 | using System.DirectoryServices.Protocols;
5 | using System.DirectoryServices.ActiveDirectory;
6 | using System.Security.Principal;
7 |
8 | /*
9 | * Written by Jonas Vestberg (@bugch3ck)
10 | * Stolen from https://github.com/leechristensen/Random/blob/master/PowerShellScripts/Get-LdapCurrentUser.ps1
11 | */
12 | namespace SharpLdapWhoami
13 | {
14 | public struct Arguments
15 | {
16 | public enum AuthMethodEnum // Values in sync with System.DirectoryServices.Protocols.AuthType
17 | {
18 | Ntlm = 3,
19 | Nego = 2,
20 | Negotiate = 2,
21 | Kerb = 9,
22 | Kerberos = 9
23 | };
24 |
25 | public bool Valid { get; set; }
26 | public bool Verbose { get; set; }
27 | public bool Group { get; set; }
28 | public bool User { get; set; }
29 | public string Server { get; set; }
30 | public AuthMethodEnum AuthMethod { get; set; }
31 |
32 | }
33 |
34 | struct PrincipalInfo
35 | {
36 | public PrincipalInfo(string dn, string name, string sid)
37 | {
38 | DN = dn;
39 | Name = name;
40 | Sid = sid;
41 | }
42 | public string DN { get; set; }
43 | public string Name { get; set; }
44 | public string Sid { get; set; }
45 |
46 | public PrincipalInfo(SearchResultEntry entry)
47 | {
48 | DN = entry.Attributes["distinguishedName"][0].ToString();
49 | Name = entry.Attributes["sAMAccountName"][0].ToString();
50 | if (entry.Attributes["objectSid"][0].GetType() == typeof(System.Byte[]))
51 | {
52 | Sid = new SecurityIdentifier((byte[])entry.Attributes["objectSid"][0], 0).ToString();
53 | }
54 | else
55 | {
56 | // Strange case when objectSig contains a string with the SID bytes instead of a byte array.
57 | Sid = new SecurityIdentifier(Encoding.ASCII.GetBytes((string)entry.Attributes["objectSid"][0]), 0).ToString();
58 | }
59 | }
60 | }
61 |
62 | class Program
63 | {
64 |
65 | static private void PrintHelp()
66 | {
67 | Console.WriteLine(
68 | @"
69 |
70 | SharpLdapWhoami by @bugch3ck.
71 |
72 | WhoAmI by asking the LDAP service on a domain controller.
73 | Original idea from Lee Christensen's Get-LdapCurrentUser.ps1
74 |
75 | Usage:
76 |
77 | SharpLdapWhoami [/all] [/user] [/groups] [/v] [/server:] [/h | /?]
78 |
79 | Options:
80 |
81 | /u /user - Show detailed user information.
82 | /g /groups - Show group information (primary group, member of and recursive group membership).
83 | /a /all - /user and /group combined.
84 | /v /verbose - Show verbose output.
85 | /h /help /? - Show this help.
86 | /s /server: - The LDAP server to use (defaults to autoselect in user and computer context).
87 | /m /method: - The authentication method to use against the LDAP server.
88 | ntlm NTLM
89 | kerb, kerberos Kerberos
90 | nego, negotiate Negotiate
91 |
92 | Examples:
93 |
94 | SharpLdapWhoami
95 | SharpLdapWhoami /method:ntlm
96 | SharpLdapWhoami /method:kerb
97 | SharpLdapWhoami /all /server:dc01.e-corp.local
98 | SharpLdapWhoami /u /s:10.10.10.1:636 /m:nego
99 |
100 |
101 | Credits to
102 |
103 | ");
104 | }
105 |
106 | static private Arguments ParseArgs(string[] args)
107 | {
108 | Arguments parsedArgs = new Arguments() {
109 | Valid = true,
110 | AuthMethod=Arguments.AuthMethodEnum.Negotiate
111 | };
112 |
113 | foreach (string arg in args)
114 | {
115 | string[] x = arg.Split(new char[] { ':' }, 2);
116 | string opt = x[0];
117 | string val = (x.Length > 1) ? x[1] : null;
118 | switch (opt)
119 | {
120 | case "/v":
121 | case "/verbose":
122 | parsedArgs.Verbose = true;
123 | break;
124 | case "/u":
125 | case "/user":
126 | parsedArgs.User = true;
127 | break;
128 | case "/g":
129 | case "/groups":
130 | parsedArgs.Group = true;
131 | break;
132 | case "/a":
133 | case "/all":
134 | parsedArgs.User = true;
135 | parsedArgs.Group = true;
136 | break;
137 | case "/s":
138 | case "/server":
139 | parsedArgs.Server = val;
140 | break;
141 | case "/m":
142 | case "/method":
143 | try
144 | {
145 | parsedArgs.AuthMethod = (Arguments.AuthMethodEnum) System.Enum.Parse(typeof(Arguments.AuthMethodEnum), val, true);
146 |
147 | } catch (Exception)
148 | {
149 | Console.Error.WriteLine($"Error: Unknown authentication method {val}");
150 | parsedArgs.Valid = false;
151 | }
152 |
153 | break;
154 | default:
155 | parsedArgs.Valid = false;
156 | break;
157 | }
158 | }
159 |
160 | return parsedArgs;
161 | }
162 |
163 | static private void OutputResultTable(string title, string[] headings, PrincipalInfo entry)
164 | {
165 | Dictionary list = new Dictionary();
166 | list.Add(entry.DN, entry);
167 | OutputResultTable(title, headings, list);
168 | }
169 |
170 | static private void OutputResultTable(string title, string[] headings, Dictionary list)
171 | {
172 | Console.WriteLine();
173 | Console.WriteLine(title.ToUpper());
174 | Console.WriteLine(new String('-', title.Length));
175 | Console.WriteLine();
176 |
177 | int[] maxWidth = new int[] {
178 | headings[0].Length,
179 | headings[1].Length,
180 | headings[2].Length
181 | };
182 |
183 | foreach (PrincipalInfo entry in list.Values)
184 | {
185 | maxWidth[0] = (entry.Name.Length > maxWidth[0]) ? entry.Name.Length : maxWidth[0];
186 | maxWidth[1] = (entry.Sid.Length > maxWidth[1]) ? entry.Sid.Length : maxWidth[1];
187 | maxWidth[2] = (entry.DN.Length > maxWidth[2]) ? entry.DN.Length : maxWidth[2];
188 | }
189 | Console.WriteLine(
190 | String.Format("{0} {1} {2}",
191 | headings[0].PadRight(maxWidth[0]),
192 | headings[1].PadRight(maxWidth[1]),
193 | headings[2].PadRight(maxWidth[2])
194 | )
195 | );
196 | Console.WriteLine(
197 | String.Format("{0} {1} {2}",
198 | "".PadRight(maxWidth[0], '='),
199 | "".PadRight(maxWidth[1], '='),
200 | "".PadRight(maxWidth[2], '=')
201 | )
202 | );
203 | foreach (PrincipalInfo entry in list.Values)
204 | {
205 | Console.WriteLine(
206 | String.Format("{0} {1} {2}",
207 | entry.Name.PadRight(maxWidth[0]),
208 | entry.Sid.PadRight(maxWidth[1]),
209 | entry.DN.PadRight(maxWidth[2])
210 | )
211 | );
212 | }
213 |
214 | Console.WriteLine();
215 | }
216 |
217 | static private void OutputVerbose(string s, bool isError = false)
218 | {
219 | if (ParsedArgs.Verbose == false) return;
220 |
221 | if (isError)
222 | {
223 | Console.Error.WriteLine($"[-] {s}");
224 | }
225 | else
226 | {
227 | Console.WriteLine($"[*] {s}");
228 | }
229 | }
230 |
231 | private static void AddGroupsInGroups(Dictionarygroups, LdapConnection c, SearchRequest searchRequest)
232 | {
233 | // Get group information
234 | SearchResponse searchResponse = (SearchResponse)c.SendRequest(searchRequest);
235 |
236 | for (int i = 0; i < searchResponse.Entries.Count; i++)
237 | {
238 | PrincipalInfo groupInfo = new PrincipalInfo(searchResponse.Entries[i]);
239 | if (groups.ContainsKey(groupInfo.DN) == false)
240 | {
241 | groups.Add(groupInfo.DN, groupInfo);
242 |
243 | // Query groups that this group is a member of.
244 | SearchRequest searchRequest2 = new SearchRequest
245 | (
246 | searchRequest.DistinguishedName,
247 | $"(&(objectClass=group)(member={groupInfo.DN}))",
248 | System.DirectoryServices.Protocols.SearchScope.Subtree,
249 | new string[] { "sAMAccountName", "objectSid", "distinguishedName" }
250 | );
251 | AddGroupsInGroups(groups, c, searchRequest2);
252 | }
253 | }
254 |
255 |
256 | }
257 |
258 | public static Arguments ParsedArgs;
259 |
260 | static int Main(string[] args)
261 | {
262 | ParsedArgs = ParseArgs(args);
263 | Dictionary groups = new Dictionary();
264 |
265 | if (ParsedArgs.Valid == false)
266 | {
267 | PrintHelp();
268 | return -1;
269 | }
270 |
271 | string server = ParsedArgs.Server;
272 | if (server == null)
273 | {
274 | OutputVerbose("No server argument. Using current context to find domain controller.");
275 | try
276 | {
277 | OutputVerbose("Looking up domain controller for current user.");
278 | Domain domain = Domain.GetCurrentDomain();
279 | server = domain.FindDomainController().Name;
280 | }
281 | catch (Exception)
282 | {
283 | OutputVerbose("Cannot retrieve domain controller for current user.", true);
284 | }
285 | if (server == null)
286 | {
287 | try
288 | {
289 | OutputVerbose("Looking up domain controller for computer.");
290 | Domain domain = Domain.GetComputerDomain();
291 | server = domain.FindDomainController().Name;
292 | }
293 | catch (Exception)
294 | {
295 | OutputVerbose("Cannot retrieve domain controller for computer.", true);
296 | }
297 | if (server == null)
298 | {
299 | Console.Error.WriteLine("Error: No ldap server specified and could not find a domain controller in user or computer context. Quitting");
300 | return -2;
301 | }
302 | }
303 | }
304 |
305 | LdapConnection c;
306 | c = new LdapConnection(server); // Defaults to AuthType.Negotiate
307 | c.AuthType = (System.DirectoryServices.Protocols.AuthType)ParsedArgs.AuthMethod;
308 | string response;
309 |
310 | try
311 | {
312 | ExtendedRequest extreq = new ExtendedRequest("1.3.6.1.4.1.4203.1.11.3");
313 | ExtendedResponse extres = (ExtendedResponse) c.SendRequest(extreq);
314 | response = Encoding.ASCII.GetString(extres.ResponseValue);
315 | }
316 | catch (Exception e)
317 | {
318 | Console.Error.WriteLine($"Error: Cannot connect to LDAP server ({e.Message})");
319 | return -10;
320 | }
321 |
322 | if (response == null)
323 | {
324 | Console.Error.WriteLine("Error: Failed to request current user from LDAP.");
325 | }
326 | else if (response.StartsWith("u:") == false)
327 | {
328 | Console.Error.WriteLine($"Error: Unexpected username format from LDAP ({response}).");
329 | return -1;
330 | }
331 | int i1 = response.IndexOf(':');
332 | int i2 = response.IndexOf('\\',i1+1);
333 | string userDomain = response.Substring(i1+1,i2-(i1+1)).ToLower(); // Conform with built in WHOAMI.exe
334 | string userName = response.Substring(i2+1);
335 |
336 | SearchRequest searchRequest;
337 | SearchResponse searchResponse;
338 |
339 | // Get domain DN to use as base in searches.
340 | searchRequest = new SearchRequest
341 | (
342 | "",
343 | "(objectClass=*)",
344 | System.DirectoryServices.Protocols.SearchScope.Base,
345 | new string[] { "DefaultNamingContext" }
346 | );
347 |
348 | searchResponse = (SearchResponse) c.SendRequest(searchRequest);
349 | string baseDN = searchResponse .Entries[0].Attributes["DefaultNamingContext"][0].ToString();
350 |
351 | // Get user attributes
352 | searchRequest = new SearchRequest
353 | (
354 | baseDN,
355 | $"(&(objectClass=user)(sAMAccountName={userName}))",
356 | System.DirectoryServices.Protocols.SearchScope.Subtree,
357 | new string[] { "objectSid", "primaryGroupID", "distinguishedName" }
358 | );
359 | searchResponse = (SearchResponse)c.SendRequest(searchRequest);
360 |
361 | SecurityIdentifier userSid = new SecurityIdentifier( (byte[])searchResponse.Entries[0].Attributes["objectSid"][0], 0);
362 | string userDN = searchResponse.Entries[0].Attributes["distinguishedName"][0].ToString();
363 | string userDomainSid = userSid.AccountDomainSid.ToString();
364 | string userPrimaryGroupID = searchResponse.Entries[0].Attributes["primaryGroupID"][0].ToString();
365 |
366 | if ((ParsedArgs.User == false) && (ParsedArgs.Group == false))
367 | {
368 | Console.WriteLine($"{userDomain}\\{userName}");
369 | }
370 | else if (ParsedArgs.User)
371 | {
372 | OutputResultTable("User information", new string[] { "User Name", "SID", "Distinguished Name" }, new PrincipalInfo(userDN, userName, userSid.ToString()));
373 | }
374 |
375 | // Get primary group information
376 | searchRequest = new SearchRequest
377 | (
378 | baseDN,
379 | $"(&(objectClass=group)(objectSid={userDomainSid}-{userPrimaryGroupID}))",
380 | System.DirectoryServices.Protocols.SearchScope.Subtree,
381 | new string[] { "sAMAccountName", "objectSid", "distinguishedName" }
382 | );
383 | searchResponse = (SearchResponse)c.SendRequest(searchRequest);
384 |
385 | PrincipalInfo primaryGroupInfo = new PrincipalInfo(searchResponse.Entries[0]);
386 |
387 | groups.Add(primaryGroupInfo.DN, primaryGroupInfo);
388 |
389 | if (ParsedArgs.Group)
390 | {
391 | // Get group information
392 | searchRequest = new SearchRequest
393 | (
394 | baseDN,
395 | $"(&(objectClass=group)(member={userDN}))",
396 | System.DirectoryServices.Protocols.SearchScope.Subtree,
397 | new string[] { "sAMAccountName", "objectSid", "distinguishedName" }
398 | );
399 | AddGroupsInGroups(groups, c, searchRequest);
400 |
401 | OutputResultTable("Group information", new string[] { "Group Name", "SID", "Distinguished Name" }, groups);
402 | }
403 | return 0;
404 | }
405 | }
406 | }
407 |
--------------------------------------------------------------------------------