fix: filter empty spns during host resolution to prevent bad edges (#99)

rvazarkar · web-flow · commit ab2e21ae7f38 · 2024-02-01T12:27:17.000-05:00
diff --git a/src/CommonLib/LDAPUtils.cs b/src/CommonLib/LDAPUtils.cs
@@ -571,6 +571,10 @@ public IEnumerable<string> DoRangedRetrieval(string distinguishedName, string at
         public async Task<string> ResolveHostToSid(string hostname, string domain)
         {
             var strippedHost = Helpers.StripServicePrincipalName(hostname).ToUpper().TrimEnd('$');
+            if (string.IsNullOrEmpty(strippedHost))
+            {
+                return null;
+            }
 
             if (_hostResolutionMap.TryGetValue(strippedHost, out var sid)) return sid;
 
diff --git a/test/unit/CommonLibHelperTests.cs b/test/unit/CommonLibHelperTests.cs
@@ -166,6 +166,15 @@ public void StripServicePrincipalName_InValidServicePrincipal_ExpectedHostName()
             var actual = SharpHoundCommonLib.Helpers.StripServicePrincipalName(testString);
             Assert.Equal(expected, actual);
         }
+        
+        [Fact]
+        public void StripServicePrincipalName_EmptyHost_Valid()
+        {
+            var testString = "MSSQLSvc/:1433";
+            var expected = "";
+            var actual = SharpHoundCommonLib.Helpers.StripServicePrincipalName(testString);
+            Assert.Equal(expected, actual);
+        }
 
         [Fact]
         public void B64ToBytes_String_ValidBase64String()

Original file line number	Diff line number	Diff line change
`@@ -571,6 +571,10 @@ public IEnumerable<string> DoRangedRetrieval(string distinguishedName, string at`
`571`	`571`	`public async Task<string> ResolveHostToSid(string hostname, string domain)`
`572`	`572`	`{`
`573`	`573`	`var strippedHost = Helpers.StripServicePrincipalName(hostname).ToUpper().TrimEnd('$');`
	`574`	`+ if (string.IsNullOrEmpty(strippedHost))`
	`575`	`+ {`
	`576`	`+ return null;`
	`577`	`+ }`
`574`	`578`
`575`	`579`	`if (_hostResolutionMap.TryGetValue(strippedHost, out var sid)) return sid;`
`576`	`580`