From 132f6043e133d4bcd794ea89d747c38e0455d986 Mon Sep 17 00:00:00 2001
From: michael-dev <michael-dev@fami-braun.de>
Date: Mon, 24 Apr 2023 15:37:49 +0200
Subject: [PATCH] Autodetect DC from realm for /changepw

Make /changepw use the user realm when autodetecting the DC.
---
 Rubeus/lib/Reset.cs | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/Rubeus/lib/Reset.cs b/Rubeus/lib/Reset.cs
index bcbef723..83b707b6 100755
--- a/Rubeus/lib/Reset.cs
+++ b/Rubeus/lib/Reset.cs
@@ -28,13 +28,13 @@ public static void UserPassword(KRB_CRED kirbi, string newPassword, string domai
             //      KRB-PRIV structure containing ChangePasswdData, enc w/ the sub session key
             // reference: Microsoft Windows 2000 Kerberos Change Password and Set Password Protocols (RFC3244)
 
-            string dcIP = Networking.GetDCIP(domainController);
-            if (String.IsNullOrEmpty(dcIP)) { return; }
-
             // extract the user and domain from the existing .kirbi ticket
             string userName = kirbi.enc_part.ticket_info[0].pname.name_string[0];
             string userDomain = kirbi.enc_part.ticket_info[0].prealm;
 
+            string dcIP = Networking.GetDCIP(domainController, false, userDomain);
+            if (String.IsNullOrEmpty(dcIP)) { return; }
+
             if (targetUser == null) {
                 Console.WriteLine("[*] Changing password for user: {0}@{1}", userName, userDomain);
             } else {