All fixes requested by @SamErde

Jake Hildreth · Jake Hildreth · commit cf29817eea50 · 2024-11-03T07:10:38.000-06:00
diff --git a/Invoke-Locksmith.ps1 b/Invoke-Locksmith.ps1
@@ -288,7 +288,7 @@ function Find-ESC11 {
                 Name              = $_.Name
                 DistinguishedName = $_.DistinguishedName
                 Technique         = 'ESC11'
-                Issue             = $_.AuditFilter
+                Issue             = $_.InterfaceFlag
                 Fix               = 'N/A'
                 Revert            = 'N/A'
             }
@@ -861,7 +861,7 @@ function Find-ESC6 {
                 Name              = $_.Name
                 DistinguishedName = $_.DistinguishedName
                 Technique         = 'ESC6'
-                Issue             = $_.AuditFilter
+                Issue             = $_.SANFlag
                 Fix               = 'N/A'
                 Revert            = 'N/A'
             }
@@ -2798,7 +2798,7 @@ function Invoke-Locksmith {
         [System.Management.Automation.PSCredential]$Credential
     )
 
-    $Version = '2024.10'
+    $Version = '2024.11'
     $LogoPart1 = @"
     _       _____  _______ _     _ _______ _______ _____ _______ _     _
     |      |     | |       |____/  |______ |  |  |   |      |    |_____|
diff --git a/Locksmith.psd1 b/Locksmith.psd1
@@ -7,7 +7,7 @@
     Description          = 'A small tool to find and fix common misconfigurations in Active Directory Certificate Services.'
     FunctionsToExport    = @('*')
     GUID                 = 'b1325b42-8dc4-4f17-aa1f-dcb5984ca14a'
-    ModuleVersion        = '2024.10'
+    ModuleVersion        = '2024.11'
     PowerShellVersion    = '5.1'
     PrivateData          = @{
         PSData = @{
diff --git a/Private/Find-ESC11.ps1 b/Private/Find-ESC11.ps1
@@ -36,7 +36,7 @@
                 Name              = $_.Name
                 DistinguishedName = $_.DistinguishedName
                 Technique         = 'ESC11'
-                Issue             = $_.AuditFilter
+                Issue             = $_.InterfaceFlag
                 Fix               = 'N/A'
                 Revert            = 'N/A'
             }
diff --git a/Private/Find-ESC6.ps1 b/Private/Find-ESC6.ps1
@@ -36,7 +36,7 @@
                 Name              = $_.Name
                 DistinguishedName = $_.DistinguishedName
                 Technique         = 'ESC6'
-                Issue             = $_.AuditFilter
+                Issue             = $_.SANFlag
                 Fix               = 'N/A'
                 Revert            = 'N/A'
             }
diff --git a/Private/Invoke-Remediation.ps1 b/Private/Invoke-Remediation.ps1
@@ -27,7 +27,7 @@ function Invoke-Remediation {
     .PARAMETER ESC6
     A PS Object containing all necessary information about ESC6 issues.
 
-    .PARAMETER ESC6
+    .PARAMETER ESC11
     A PS Object containing all necessary information about ESC11 issues.
 
     .INPUTS
diff --git a/Private/Invoke-Scans.ps1 b/Private/Invoke-Scans.ps1
@@ -23,7 +23,7 @@ function Invoke-Scans {
 
     .NOTES
         - The script requires the following functions to be defined: Find-AuditingIssue, Find-ESC1, Find-ESC2, Find-ESC3Condition1,
-          Find-ESC3Condition2, Find-ESC4, Find-ESC5, Find-ESC6, Find-ESC8, Find-ESC8.
+          Find-ESC3Condition2, Find-ESC4, Find-ESC5, Find-ESC6, Find-ESC8, Find-ESC11.
         - The script uses Out-GridView or Out-ConsoleGridView for interactive selection when the 'PromptMe' scan option is chosen.
         - The script returns a hash table containing the results of the scans.
 
@@ -113,9 +113,9 @@ function Invoke-Scans {
             Write-Host 'Identifying HTTP-based certificate enrollment interfaces (ESC8)...'
             [array]$ESC8 = Find-ESC8 -ADCSObjects $ADCSObjects
         }
-        ESC6 {
+        ESC11 {
             Write-Host 'Identifying Issuing CAs with IF_ENFORCEENCRYPTICERTREQUEST disabled (ESC11)...'
-            [array]$ESC6 = Find-ESC6 -ADCSObjects $ADCSObjects
+            [array]$ESC11 = Find-ESC11 -ADCSObjects $ADCSObjects
         }
         All {
             Write-Host 'Identifying auditing issues...'
@@ -144,7 +144,7 @@ function Invoke-Scans {
     [array]$AllIssues = $AuditingIssues + $ESC1 + $ESC2 + $ESC3 + $ESC4 + $ESC5 + $ESC6 + $ESC8 + $ESC11
 
     # If these are all empty = no issues found, exit
-    if ((!$AuditingIssues) -and (!$ESC1) -and (!$ESC2) -and (!$ESC3) -and (!$ESC4) -and (!$ESC5) -and (!$ESC6) -and (!$ESC8) -and ($ESC11) ) {
+    if ((!$AuditingIssues) -and (!$ESC1) -and (!$ESC2) -and (!$ESC3) -and (!$ESC4) -and (!$ESC5) -and (!$ESC6) -and (!$ESC8) -and (!$ESC11) ) {
         Write-Host "`n$(Get-Date) : No ADCS issues were found." -ForegroundColor Green
         break
     }
diff --git a/Private/New-Dictionary.ps1 b/Private/New-Dictionary.ps1
@@ -21,7 +21,7 @@ descriptions, code used to find, code used to fix, and reference URLs. This is i
 
 function New-Dictionary {
     class VulnerableConfigurationItem {
-        static [string] $Version = '2023.10.01.000'
+        static [string] $Version = '2024.11.03.000'
         [string]$Name
         [ValidateSet('Escalation Path','Server Configuration','GPO Setting')][string]$Category
         [string]$Subcategory

Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@`
`36`	`36`	`Name = $_.Name`
`37`	`37`	`DistinguishedName = $_.DistinguishedName`
`38`	`38`	`Technique = 'ESC11'`
`39`		`- Issue = $_.AuditFilter`
	`39`	`+ Issue = $_.InterfaceFlag`
`40`	`40`	`Fix = 'N/A'`
`41`	`41`	`Revert = 'N/A'`
`42`	`42`	`}`