The command "setOwner" fails with "AttributeError: 'bytes' object has no attribute 'aces'"

Question

The command "setOwner" fails with "AttributeError: 'bytes' object has no attribute 'aces'"

Closed this issue 3 years ago · 2 comments

Yes, you guessed it :)

Either the command "setOwner" is broken or I am doing something wrong :) I am using your latest code and the account domainadmin1 is a domain administrator.

Also, how do I check who the current owner is? Both as in before exploiting this in order to be able to restore that owner afterwards and as in verifying that the owner has changed.

Answer 1 · 2022-01-24T13:57:59.000Z

The latest commit 4259411 should do the trick. It was not directly linked to setOwner but a formatter I added to get a pretty output of nTSecurityDescriptor.

Answer 2 · 2022-01-24T14:07:50.000Z

Great! This now works. The SID of the old owner is outputted when changing the owner. I can use that to set the owner back to the previous one.