From 8ab880340f7e379542c137a6333928ea90236112 Mon Sep 17 00:00:00 2001
From: Oran Nadler <orann>
Date: Mon, 30 Apr 2018 17:58:15 +0300
Subject: [PATCH] don't count DomainAdmins as shared admins

---
 monkey_island/cc/resources/pthmap.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/monkey_island/cc/resources/pthmap.py b/monkey_island/cc/resources/pthmap.py
index 3b1607ce7..f3e9e93be 100644
--- a/monkey_island/cc/resources/pthmap.py
+++ b/monkey_island/cc/resources/pthmap.py
@@ -465,7 +465,7 @@ class Machine(object):
         domain_admins = set()
         
         for dc in DCs:
-            domain_admins |= dc.GetLocalAdminSids()
+            domain_admins |= dc.GetUsersByGroupSid(self.GetGroupSidByGroupName("Domain Admins"))
         
         return domain_admins
 
@@ -851,6 +851,7 @@ class PassTheHashMap(object):
 
             shared_admins |= (m.GetLocalAdminSids() & other.GetLocalAdminSids())
         
+        shared_admins -= m.GetDomainAdminsOfMachine()
         return shared_admins
 
 def main():