Hello, while using the tool pywhisker I was able to retrieve credential information from an AD environment.
There are two credentials linked to the account in question and for both the following Traceback is thrown:
Traceback (most recent call last):
File "/home/unprivileged/tools/pywhisker/pywhisker.py", line 824, in main
shadowcreds.list()
File "/home/unprivileged/tools/pywhisker/pywhisker.py", line 320, in list
keyCredential = KeyCredential.fromDNWithBinary(DNWithBinary.fromRawDNWithBinary(dn_binary_value))
File "/usr/local/lib/python3.9/dist-packages/dsinternals-1.2.4-py3.9.egg/dsinternals/common/data/hello/KeyCredential.py", line 233, in fromDNWithBinary
_KeyCreationTime = ConvertFromBinaryTime(entry["data"], _KeySource, _Version)
File "/usr/local/lib/python3.9/dist-packages/dsinternals-1.2.4-py3.9.egg/dsinternals/Utils.py", line 61, in ConvertFromBinaryTime
return DateTime(timeStamp)
File "/usr/local/lib/python3.9/dist-packages/dsinternals-1.2.4-py3.9.egg/dsinternals/system/DateTime.py", line 31, in init
self.Value = datetime.datetime(1601, 1, 1, 0, 0, 0) + datetime.timedelta(seconds=ticks / 1e7)
OverflowError: date value out of range
[!] date value out of range
It seems the date is out of range, do you know by any chance how such a date could be included in the binary or how I could troubleshoot the issue?
Thanks a lot!