PyADRecon 0.11.1__tar.gz

pyadrecon-0.11.1/.dockerignore

@@ -0,0 +1,36 @@
+# PyADRecon output directories
+PyADRecon-Report-*/
+results/
+
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.pyc
+*.pyo
+
+# Git
+.git/
+.gitignore
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Documentation
+*.md
+LICENSE
+
+# CI/CD
+.github/
+
+# Virtual environments
+venv/
+env/
+ENV/

pyadrecon-0.11.1/.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,96 @@
+---
+name: Bug report
+about: Create a report to help us improve
+title: 'BUG: '
+labels: ''
+assignees: ''
+
+---
+
+## PyADRecon Bug Report
+
+Thank you for taking the time to report an issue!  
+
+To help diagnose quickly, please fill in the sections below with as much detail as you can.
+
+---
+
+### ❓ Summary
+
+**Describe the problem in one or two sentences**
+What is the observed behavior vs. what you expected?
+
+---
+
+### 🧪 Command(s) run
+
+Provide the exact command(s) you ran, including all flags:
+
+```
+# example
+pyadrecon -d CONTOSO.LOCAL -u user01 -p 'Password123!' --output report.json
+```
+
+---
+
+### 🖥️ Environment
+
+- **PyADRecon version**:  
+  Example: `v0.5.2` or `master @ commit abc1234`
+- **Operating System** (where PyADRecon ran):  
+  Example: Ubuntu 22.04, Windows 10
+- **Python version**:  
+  Example: `Python 3.11.2`
+
+---
+
+### 🏢 Domain Environment
+
+- **Domain Controller OS version(s)**:  
+  Example: `Windows Server 2019 Standard`, `Windows Server 2022 DC`
+- **AD user privileges** used for the run:  
+  Example: `Domain User`, `Enterprise Admin`, `Cert Publishers`
+
+---
+
+### 📊 Output / Incorrect Parsing
+
+For each field or section that is incorrect, please include:
+
+- **Section name / object type**
+- **Attribute(s) that are wrong**
+- **What was parsed**
+- **What you expected**
+
+Example:
+
+```
+Collection: Users
+Attribute: Enabled
+Parsed: "True"
+Expected: "False"
+```
+
+Paste text or small snippets (not entire output unless necessary).
+
+---
+
+### 🧾 Logs / Errors
+
+If you saw warnings or errors, include relevant lines:
+
+```
+# paste output here
+```
+
+If debug logs are available, include them as a code block (sanitize any credentials first).
+
+---
+
+### ⚠️ Additional context
+
+Add any other context about the issue here (e.g., replication steps, domain peculiarities, related tooling).
+
+---
+
+Thank you — we’ll triage this promptly!

pyadrecon-0.11.1/.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,71 @@
+---
+name: Feature request
+about: Suggest an idea for this project
+title: 'FEATURE: '
+labels: ''
+assignees: ''
+
+---
+
+## PyADRecon Feature Request
+
+Please fill out the information below to help us understand the use case and scope of your proposal.
+
+---
+
+### 📌 Summary
+
+**Describe the feature you’re proposing in one or two sentences.**
+
+---
+
+### 🎯 Motivation
+
+- What problem does this solve?
+- Who benefits (e.g., blue team, red team, auditors)?
+- Are there existing tools or workflows this integrates with or complements?
+
+---
+
+### 💡 Proposed Behavior
+
+Describe how you envision this working:
+
+- New command-line options?
+- New report sections?
+- New detection logic?
+- New modules?
+- What inputs/output formats should it use?
+
+---
+
+### 🧪 Example Usage (optional)
+
+If applicable, show example commands and expected output:
+
+```
+# e.g., pyadrecon --detect-dmsa
+```
+
+```
+DelegatedMSAs:
+- dMSA: SQL-SvcAcct
+  Password Readers: Domain Users
+  Risk Level: CRITICAL
+```
+
+---
+
+### 📚 Alternatives Considered
+
+If you considered alternatives (existing tools, different implementations), please describe why this approach is preferred.
+
+---
+
+### 🚀 Additional context
+
+Add any other context about the proposal here.
+
+---
+
+Thank you — your ideas help make PyADRecon better!

pyadrecon-0.11.1/.github/workflows/conventional-commits.yml

@@ -0,0 +1,137 @@
+name: CI
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+
+permissions:
+  contents: write
+  packages: write
+  pull-requests: write
+
+jobs:
+
+  changelog:
+    name: Changelog
+    if: github.event_name != 'pull_request'
+    runs-on: ubuntu-latest
+
+    outputs:
+      skipped: ${{ steps.changelog.outputs.skipped }}
+      tag: ${{ steps.changelog.outputs.tag }}
+      clean_changelog: ${{ steps.changelog.outputs.clean_changelog }}
+      version: ${{ steps.changelog.outputs.version }}
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Conventional Changelog Action
+        id: changelog
+        uses: TriPSs/conventional-changelog-action@v5
+        with:
+          preset: "conventionalcommits"
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+
+  deploy:
+    name: Deploy Image
+    needs: [changelog]
+    if: github.event_name != 'pull_request' && needs.changelog.outputs.skipped == 'false'
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Get repository name
+        id: get_repo
+        run: echo "REPO_NAME=$(echo ${{ github.repository }} | cut -d'/' -f2 | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV
+
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        with:
+          fetch-depth: 0
+
+      - name: Pull latest changes
+        run: |
+          git pull origin main
+
+      - name: Inject version into pyadrecon.py
+        run: |
+          VERSION=${{ needs.changelog.outputs.tag }}
+          sed -i 's/VERSION = ".*"/VERSION = "'${VERSION}'"/' pyadrecon.py
+          echo "Updated VERSION to ${VERSION}"
+          grep 'VERSION = ' pyadrecon.py
+
+      - name: Commit version update
+        run: |
+          git config --local user.email "21357789+l4rm4nd@users.noreply.github.com"
+          git config --local user.name "l4rm4nd"
+          git add pyadrecon.py
+          git commit -m "chore: bump version to ${{ needs.changelog.outputs.tag }} [skip ci]" || echo "No changes to commit"
+          git push origin main
+
+      - name: Login to GHCR.IO
+        uses: docker/login-action@v1
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Setup Docker Buildx
+        uses: docker/setup-buildx-action@v3          
+
+      - name: Extract version parts
+        id: extract_version
+        run: |
+          VERSION=${{ needs.changelog.outputs.version }}
+          MAJOR_MINOR=$(echo $VERSION | cut -d'.' -f1,2)
+          echo "MAJOR_MINOR_TAG=${MAJOR_MINOR}.x" >> $GITHUB_ENV
+      
+      - name: Setup Docker Metadata
+        uses: docker/metadata-action@v5
+        id: meta
+        with:
+          images: |
+            ghcr.io/${{ github.repository_owner }}/${{ env.REPO_NAME }}
+          tags: |
+            latest
+            ${{ needs.changelog.outputs.version }}
+            ${{ env.MAJOR_MINOR_TAG }}
+      
+      - name: Build and Push Docker Image
+        uses: docker/build-push-action@4a13e500e55cf31b7a5d59a38ab2040ab0f42f56 # v5
+        with:
+          context: .
+          file: Dockerfile
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          platforms: linux/amd64, linux/arm64
+
+  release:
+    name: Release
+    needs: [changelog, deploy]
+    if: github.event_name != 'pull_request' && needs.changelog.outputs.skipped == 'false'
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+  
+      - name: Debug Changelog Outputs
+        run: echo ${{ needs.changelog.outputs.tag }}
+        
+      - name: Create Release
+        uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844 # v1
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          tag_name: ${{ needs.changelog.outputs.tag }}
+          prerelease: false
+          draft: false
+          generate_release_notes: true
+          name: ${{ needs.changelog.outputs.tag }}
+          body: |
+            <details>
+              <summary>🤖 Autogenerated Conventional Changelog</summary>
+              
+            ${{ needs.changelog.outputs.clean_changelog }}
+            </details>

pyadrecon-0.11.1/.github/workflows/pypi.yml

@@ -0,0 +1,59 @@
+name: Publish to PyPI
+
+on:
+  release:
+    types: [published]
+  workflow_dispatch:
+    inputs:
+      tag:
+        description: "Release tag to publish (e.g. v0.11.0). Leave empty to use the current ref."
+        required: false
+        default: ""
+
+permissions:
+  contents: read
+  id-token: write
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Determine ref to build
+        id: ref
+        shell: bash
+        run: |
+          if [[ "${{ github.event_name }}" == "release" ]]; then
+            echo "ref=${{ github.event.release.tag_name }}" >> "$GITHUB_OUTPUT"
+          elif [[ -n "${{ inputs.tag }}" ]]; then
+            echo "ref=${{ inputs.tag }}" >> "$GITHUB_OUTPUT"
+          else
+            echo "ref=${{ github.ref_name }}" >> "$GITHUB_OUTPUT"
+          fi
+
+      - name: Checkout repo (for tags)
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Fetch tags
+        run: git fetch --tags --force
+
+      - name: Checkout ref
+        run: |
+          echo "Using ref: ${{ steps.ref.outputs.ref }}"
+          git checkout "${{ steps.ref.outputs.ref }}"
+
+      - name: Setup Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.11"
+
+      - name: Build dists
+        run: |
+          python -m pip install --upgrade pip build twine
+          python -m build
+          twine check dist/*
+
+      - name: Publish to PyPI (Trusted Publishing)
+        uses: pypa/gh-action-pypi-publish@release/v1

pyadrecon-0.11.1/.gitignore

@@ -0,0 +1,26 @@
+# PyADRecon output directories
+PyADRecon-Report-*/
+results/
+
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+
+# Virtual environments
+venv/
+env/
+ENV/
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# OS
+.DS_Store
+Thumbs.db

pyadrecon-0.11.1/CHANGELOG.md

@@ -0,0 +1,36 @@
+## [0.11.1](https://github.com/l4rm4nd/PyADRecon/compare/v0.11.0...v0.11.1) (2026-02-12)
+
+
+### Bug Fixes
+
+* trigger ci and test pypi release ([89d0e4e](https://github.com/l4rm4nd/PyADRecon/commit/89d0e4e9c9ec99a26c01defe1710e95a5f71d4e3))
+
+## [0.11.0](https://github.com/l4rm4nd/PyADRecon/compare/v0.10.2...v0.11.0) (2026-02-11)
+
+
+### Features
+
+* striped cells, new collection methods, show maq in domain tab ([de701f9](https://github.com/l4rm4nd/PyADRecon/commit/de701f9a532aad3ec65398e4bb2d49677f13d68e))
+
+## [0.10.2](https://github.com/l4rm4nd/PyADRecon/compare/v0.10.1...v0.10.2) (2026-02-10)
+
+
+### Bug Fixes
+
+* improve password policy parsing and display as (d h m s) ([9161f8c](https://github.com/l4rm4nd/PyADRecon/commit/9161f8c925c768a301578575f7152fc7985b4cd2)), closes [#4](https://github.com/l4rm4nd/PyADRecon/issues/4)
+* use empty workstation name instead of spoofing ([1a3db5b](https://github.com/l4rm4nd/PyADRecon/commit/1a3db5b627d1f40b81d3511164e76d052583513a))
+
+## [0.10.1](https://github.com/l4rm4nd/PyADRecon/compare/v0.10.0...v0.10.1) (2026-02-09)
+
+
+### Bug Fixes
+
+* use empty workstation name instead of spoofing ([80329a9](https://github.com/l4rm4nd/PyADRecon/commit/80329a9a9ba7825bf7ee9b2d6ef04f1da76edf0a))
+
+## [0.10.0](https://github.com/l4rm4nd/PyADRecon/compare/v0.9.1...v0.10.0) (2026-02-09)
+
+
+### Features
+
+* add logonWorkstation bypass via --workstation ([9bf02d3](https://github.com/l4rm4nd/PyADRecon/commit/9bf02d3d48ee8d76da305ed7b5ce3701c4cfdf00))
+

pyadrecon-0.11.1/Dockerfile

@@ -0,0 +1,63 @@
+# Build stage
+FROM python:3.12.4-slim AS builder
+
+# Install build dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    gcc \
+    libffi-dev \
+    libssl-dev \
+    python3-dev \
+    build-essential \
+    libxml2-dev \
+    libxslt1-dev \
+    libkrb5-dev \
+    && rm -rf /var/lib/apt/lists/*
+
+# Install Python packages
+COPY requirements.txt /tmp/
+RUN pip3 install --no-cache-dir --prefix=/install -r /tmp/requirements.txt
+
+# Runtime stage
+FROM python:3.12.4-slim
+LABEL Maintainer="LRVT"
+
+# Install only runtime libraries (not build tools)
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    libffi8 \
+    libssl3 \
+    libxml2 \
+    libxslt1.1 \
+    libkrb5-3 \
+    krb5-user \
+    && rm -rf /var/lib/apt/lists/*
+
+# Configure OpenSSL to enable legacy providers (required for MD4/NTLM)
+RUN mkdir -p /etc/ssl && \
+    cat > /etc/ssl/openssl.cnf <<EOF
+openssl_conf = openssl_init
+
+[openssl_init]
+providers = provider_sect
+
+[provider_sect]
+default = default_sect
+legacy = legacy_sect
+
+[default_sect]
+activate = 1
+
+[legacy_sect]
+activate = 1
+EOF
+
+# Set environment variable to use legacy OpenSSL config
+ENV OPENSSL_CONF=/etc/ssl/openssl.cnf
+
+# Copy Python packages from builder
+COPY --from=builder /install /usr/local
+
+# Copy application
+COPY pyadrecon.py /app/
+
+WORKDIR /app
+ENTRYPOINT ["python", "pyadrecon.py"]

pyadrecon-0.11.1/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 LRVT
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.