Skip to content

Feature/dotnet8 migration #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
luckolen wants to merge 18 commits into
base: main
Choose a base branch
from
Open

Feature/dotnet8 migration #1

luckolen wants to merge 18 commits into from

Conversation

@luckolen
Copy link
Member

@luckolen luckolen commented Jan 28, 2026

Framework Upgrade: Migrated the solution and project files to .NET 8.0.
Enhanced DNS Engine: Replaced the legacy DNS resolver with ARSoft.Tools.Net. To support DNS over TCP
Added Linux/Docker support using base image to mcr.microsoft.com/dotnet/aspnet:8.0
Protocol Hardening: Refined the ExtendedProtectionPolicy logic to better handle Service Principal Name (SPN) matching during the NTLM handshake.
Added test client to solution which will run basic LDAP queries

luckolen added 14 commits January 21, 2026 17:41
@luckolen
Migration: Replaced legacy .NET Framework with new .NET 8
c2aee92
@luckolen
Readme typo
2f67720
@luckolen
Changed all StringComparison to OrdinalIgnoreCase.
d8d0ad0
@luckolen
Setting the loglevel to debug will (when using Windows) compare the S…
a6d5414 
…id from the manual parsing to the native Windows parser
@luckolen
Removed .toLower for faster .equals with StringComparison.OrdinalIgno…
dd86547 
…reCase
@luckolen
Add support for Windows Server 2025 and refactor auth modes
02a6117 
- Replace '--usewindowsauth' with '--mode [Windows|Username]' to support
  distinct ADWS endpoint paths.
- Set 'Windows' mode as default to align with Server 2025 "Secure by Default"
  configurations (which disable the /UserName endpoint).
- Update Dockerfile with 'gss-ntlmssp' to support NTLMv2 negotiation from
  Linux/Docker environments.
- Verified compatibility against Server 2022 and 2025 using BadBlood environments.
@luckolen
Fixed bad global catalog server handling when no domain was supplied
8c8b0c9
@luckolen
Improved testing client
aa509f9
@luckolen
Actually fixed gc server parsing
748e33a
@luckolen
Made sure TestClient can run outside of Windows
3460ecd
@luckolen
Standardize logger initialization across classes
9a5ebd6
@luckolen
Changed to a CustomBinding from NetTcpBinding
910038b
@luckolen
- DNS will now listen on TCP and UDP port 53.
29292cf 
- Setting the hostip parameter will override the IP in the DNS responses
- only-use-gc-backend can be used to have all requets go via the GC instance
- Updated dockerfile to expose dns service
@luckolen
Channel Binding: Supported
312df64 
To be honest, no clue why this started to work, but tested on Server 2025
@luckolen
Copy link
Member Author

luckolen commented Jan 28, 2026
edited
Loading

312df64

This commit has added the channel binding support.

@luckolen
Small auth fix
67542d3
@luckolen
Added --skipdns option
059664f
@luckolen
Added skip-dns to the readme.md
5efc248
@luckolen
Removed CommandLine and Newtonsoft.Json packages
72f0955 
Added listenip option
Renamed OnlyUseGCBackend option
Added docker built instructions for ADWSProxy
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@luckolen