Possible Blurb: BHIS used the WebclientServiceScanner utility available on GitHub to perform these investigations. The investigations were intended to identify any active WebClient service listeners. The WebClient service can be coerced for machine authentication which can be relayed against LDAP services to create KeyCredentials or create resource-based constrained delegation on an object. Either of these attacks will result in privilege escalation on the remote host.
git clone https://github.com/Hackndo/WebclientServiceScanner.git
cd WebclientServiceScanner
virtualenv -p python3 env
source env/bin/activate
python3 -m pip install .