Renaming ManageGPLink permission to WriteGPLink

SpecterOps · May 8, 2024 · 2427506 · 2427506
1 parent a2d5e46
commit 2427506
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 4 deletions.
diff --git a/src/CommonLib/EdgeNames.cs b/src/CommonLib/EdgeNames.cs
@@ -21,7 +21,7 @@ public static class EdgeNames
         public const string AddKeyCredentialLink = "AddKeyCredentialLink";
         public const string SQLAdmin = "SQLAdmin";
         public const string WriteAccountRestrictions = "WriteAccountRestrictions";
-        public const string ManageGPLink = "ManageGPLink";
+        public const string WriteGPLink = "WriteGPLink";
 
         //CertAbuse edges
         public const string WritePKIEnrollmentFlag = "WritePKIEnrollmentFlag";

diff --git a/src/CommonLib/Processors/ACEGuids.cs b/src/CommonLib/Processors/ACEGuids.cs
@@ -12,7 +12,7 @@ public class ACEGuids
         public const string WriteSPN = "f3a64788-5306-11d1-a9c5-0000f80367c1";
         public const string AddKeyPrincipal = "5b47d60f-6090-40b2-9f37-2a4de88f3063";
         public const string UserAccountRestrictions = "4c164200-20c0-11d0-a768-00aa006e0529";
-        public const string ManageGPLink = "f30e3bbf-9ff0-11d1-b603-0000f80367c1";
+        public const string WriteGPLink = "f30e3bbf-9ff0-11d1-b603-0000f80367c1";
 
 
         //Cert abuse ACEs

diff --git a/src/CommonLib/Processors/ACLProcessor.cs b/src/CommonLib/Processors/ACLProcessor.cs
@@ -419,13 +419,13 @@ or Label.NTAuthStore
                             IsInherited = inherited,
                             RightName = EdgeNames.WriteAccountRestrictions
                         };
-                    else if (objectType == Label.OU && aceType == ACEGuids.ManageGPLink)
+                    else if (objectType == Label.OU && aceType == ACEGuids.WriteGPLink)
                         yield return new ACE
                         {
                             PrincipalType = resolvedPrincipal.ObjectType,
                             PrincipalSID = resolvedPrincipal.ObjectIdentifier,
                             IsInherited = inherited,
-                            RightName = EdgeNames.ManageGPLink
+                            RightName = EdgeNames.WriteGPLink
                         };
                     else if (objectType == Label.Group && aceType == ACEGuids.WriteMember)
                         yield return new ACE