Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

certipy: error: unrecognized arguments

See original GitHub issue

Hello,

I have cloned the repo using the command

git clone https://github.com/ly4k/Certipy.git

I then cd’d into the Certipy directory and ran the command

sudo python3 /path/to/Certipy/setup.py install

I am trying to execute the basic certipy find command and I am getting an error regarding unrecognized commands

The command that I am executing is:

certipy find "fqdn/user_samaccountname:password@domain_controller_fqdn_or_IPAddress"

After running the command I am getting the error message

Certipy v4.0.0 - by Oliver Lyak (ly4k)

usage: certipy [-v] [-h] {account,auth,ca,cert,find,forge,ptt,relay,req,shadow,template} ...
certipy: error: unrecognized arguments: fqdn/user_samaccountname:password@domain_controller_fqdn_or_IPAddress

I have been to the blog post and read through it but no luck- https://research.ifcr.dk/certipy-2-0-bloodhound-new-escalations-shadow-credentials-golden-certificates-and-more-34d1c26f0dc6

All documentation that I am seeing is on version 2. Could this be a version 4 issue?

Thanks!

Issue Analytics

State:
Created a year ago
Comments:7 (3 by maintainers)

Top GitHub Comments

1reaction

ly4kcommented, Aug 5, 2022

Hello @robertstrom The problem you’re experiencing with 4.0 is that the user’s membership query takes too long to execute, so I’ll have to come up with a better way of finding nested group memberships. Thanks for reporting this. And the problem with 2.0.9, (and the same you’ll have in 4.0), is probably that the target parameter is incorrect. When you request the certificate, you have to specify the host name or IP of the CA server, and not the domain controller. I’ll look into the LDAP issue. Thanks again!

0reactions

robertstromcommented, Aug 10, 2022

@ly4k Sorry, I am not a GitHub expert at pulling different versions, etc. Am I going to be able to get this version update for testing or do I need to wait for you to publish the full update? If I can get and test I would appreciate some guidance in what commands I would use to do so. Thanks very much!

Top Results From Across the Web

Issues · ly4k/Certipy - GitHub

Got error while trying to request certificate: code: 0x8009310b - CRYPT_E_ASN1_BADTAG - ASN1 bad tag value met.

Certipy - Python Implementation For Active Directory ... - KitPloit

Certipy is a Python tool to enumerate and abuse misconfigurations in ... Use the -user parameter to create a certificate for another user....

Certbot: error: unrecognized arguments: ‐‐dry‐run

Hello, on my raspbian buster when i use the --dry-run option i got the error unrecognized arguments: ‐‐dry‐run pi@raspberrypi:~ $ certbot ...

Getting error while creating wildcard ssl using certbot

I am getting the below error, certbot: error: unrecognized arguments: —manual —preferred-challenges=dns —email sujith@website.com —server ...

ly4k/Certipy - Issues Antenna

Hello! I'm working with a ADCS environment vulnerable to ESC1. When I queue up my command... certipy req -username@domain.com -p 'mypass' -ca 'Name...