Fix for weird blank page problem when selecting a new predefined query

lkarlslund · Mar 10, 2022 · bab7b46 · bab7b46
1 parent 002fda7
commit bab7b46
Show file tree

Hide file tree

Showing 2 changed files with 43 additions and 43 deletions.
diff --git a/modules/analyze/html/custom.js b/modules/analyze/html/custom.js
@@ -312,7 +312,7 @@ $(function () {
     });
 
     // Predefined queries dropdown button
-    $('#predefinedqueries').on('click', 'a', function (event) {
+    $('#predefinedqueries').on('click', 'li', function (event) {
         console.log('You clicked the drop downs', event.target);
         setquery(
             event.target.getAttribute('query'),

diff --git a/modules/analyze/html/index.html b/modules/analyze/html/index.html
@@ -245,64 +245,64 @@
             </button>
             <div id="predefinedqueries" class="dropdown-menu max-vh-75 overflow-y-auto" style="max-height:75vh"
               aria-labelledby="queriesbutton">
-              <a id="defaultquery" class="dropdown-item" href="#"
+              <li id="defaultquery" class="dropdown-item"
                 query="(&(objectCategory=Group)(|(objectSid=S-1-5-32-544)(objectSid=S-1-5-21-*-512)(objectSid=S-1-5-21-*-519)))"
-                mode="Normal" depth=99 methods="default">Who owns your AD?</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who owns your AD?</li>
+              <li class="dropdown-item"
                 query="(distinguishedname=CN=MicrosoftDNS,CN=System,DC=*),(|(objectSid=S-1-5-32-544)(objectSid=S-1-5-21-*-512)(objectSid=S-1-5-21-*-519))"
-                mode="Normal" depth=99 methods="default">Who can pwn your AD by sideloading a custom DLL on your DC?</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can pwn your AD by sideloading a custom DLL on your DC?</li>
+              <li class="dropdown-item"
                 query="(_canpwn=DCsync,(!(distinguishedName=*DnsZones,DC=*)))"
-                mode="Normal" depth=99 methods="default">Who can DCsync?</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can DCsync?</li>
+              <li class="dropdown-item"
                 query="(|(objectSid=S-1-5-32-551)(objectSid=S-1-5-32-549))"
-                mode="Normal" depth=99 methods="default">Who can dump SAM/SYSTEM or your ntds.dit remotely or via RDP? (Server and Backup Operators)</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can dump SAM/SYSTEM or your ntds.dit remotely or via RDP? (Server and Backup Operators)</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=PKI-Certificate-Template)(msPKI-Certificate-Name-Flag:and:=1)(|(pKIExtendedKeyUsage=1.3.6.1.5.5.7.3.2)(pKIExtendedKeyUsage=1.3.5.1.5.2.3.4)(pKIExtendedKeyUsage=1.3.6.1.4.1.311.20.2.2)(pKIExtendedKeyUsage=2.5.29.37.0)(pKIExtendedKeyUsage:count:=0)))"
-                mode="Normal" depth=99 methods="default">Client cert templates with custom SAN (pose as anyone)</a>
-              <a class="dropdown-item" href="#" query="(|(objectSid=S-1-5-21-*-513)(objectSid=S-1-5-11))" mode="Reverse"
-                depth=99 methods="default">What can Domain Users and Authenticated Users do?</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Client cert templates with custom SAN (pose as anyone)</li>
+              <li class="dropdown-item" query="(|(objectSid=S-1-5-21-*-513)(objectSid=S-1-5-11))" mode="Reverse"
+                depth=99 methods="default">What can Domain Users and Authenticated Users do?</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Group)(|(name=*vcenter*)(name=*vmware*)(name=*esxi*)(name=*vsan*)(name=*simplivity*)))"
-                mode="Normal" depth=99 methods="default">Who can dump a virtual DC? (hypervisor/SAN sounding groups)</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can dump a virtual DC? (hypervisor/SAN sounding groups)</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Group)(|(name=*backup*)(name=*veeam*)(name=*tsm*)(name=*tivoli storage*)(name=*rubrik*)(name=*commvault*))),(|(objectSid=S-1-5-32-544)(objectSid=S-1-5-21-*-512)(objectSid=S-1-5-21-*-519))"
-                mode="Normal" depth=99 methods="default">Who can wipe or access your backups? (backup sounding groups)</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can wipe or access your backups? (backup sounding groups)</li>
+              <li class="dropdown-item"
                 query="(objectCategory=Group-Policy-Container)"
-                mode="Normal" depth=99 methods="default">Who can change GPOs?</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99 methods="default">Who can change GPOs?</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Person)(userAccountControl:1.2.840.113556.1.4.803:=32))" mode="Normal" depth=99
-                methods="default">Users not required to have a password</a>
-              <a class="dropdown-item" href="#"
+                methods="default">Users not required to have a password</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Person)(userAccountControl:1.2.840.113556.1.4.803:=64))" mode="Normal" depth=99
-                methods="default">Users that can't change password</a>
-              <a class="dropdown-item" href="#"
+                methods="default">Users that can't change password</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Person)(userAccountControl:1.2.840.113556.1.4.803:=65536))" mode="Normal"
-                depth=99 methods="default">Users where password never expire</a>
-              <a class="dropdown-item" href="#"
+                depth=99 methods="default">Users where password never expire</li>
+              <li class="dropdown-item"
                 query="(&(objectClass=Person)(!(pwdLastSet=0))(pwdLastSet:since:<-5Y)(!(userAccountControl:and:=2)))"
-                mode="Reverse" depth=99 methods="default">Accounts that has a password older than 5 years</a>
-              <a class="dropdown-item" href="#"
+                mode="Reverse" depth=99 methods="default">Accounts that has a password older than 5 years</li>
+              <li class="dropdown-item"
                 query="(&(objectClass=Person)(pwdLastSet=0)(|(logonCount=0)(!(logonCount=*)))(!(userAccountControl:and:=2)))"
-                mode="Reverse" depth=99 methods="default">New accounts with initial password</a>
-              <a class="dropdown-item" href="#" query="(&(objectCategory=Person)(memberOf=CN=Protected Users,*))"
-                mode="Normal" depth=99 methods="default">Who can pwn Protected Users?</a>
-              <a class="dropdown-item" href="#" query="(&(objectCategory=Person)(memberOf:count:>10))" mode="Normal"
-                depth=1 methods="default">Users that are direct members of more than 10 groups</a>
-              <a class="dropdown-item" href="#" query="(&(objectCategory=Person)(servicePrincipalName=*))" mode="Normal"
-                depth=1 methods="HasSPN">Users with SPNs (can be Kerberoasted)</a>
-              <a class="dropdown-item" href="#" query="(&(objectCategory=Group)(member:count:>100))" mode="Normal"
-                depth=99 methods="default">Groups that have more than 100 direct members</a>
-              <a class="dropdown-item" href="#"
+                mode="Reverse" depth=99 methods="default">New accounts with initial password</li>
+              <li class="dropdown-item" query="(&(objectCategory=Person)(memberOf=CN=Protected Users,*))"
+                mode="Normal" depth=99 methods="default">Who can pwn Protected Users?</li>
+              <li class="dropdown-item" query="(&(objectCategory=Person)(memberOf:count:>10))" mode="Normal"
+                depth=1 methods="default">Users that are direct members of more than 10 groups</li>
+              <li class="dropdown-item" query="(&(objectCategory=Person)(servicePrincipalName=*))" mode="Normal"
+                depth=1 methods="HasSPN">Users with SPNs (can be Kerberoasted)</li>
+              <li class="dropdown-item" query="(&(objectCategory=Group)(member:count:>100))" mode="Normal"
+                depth=99 methods="default">Groups that have more than 100 direct members</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Computer)(userAccountControl:1.2.840.113556.1.4.803:=8192))" mode="Normal"
-                depth=99>Domain Controllers</a>
-              <a class="dropdown-item" href="#"
+                depth=99>Domain Controllers</li>
+              <li class="dropdown-item"
                 query="(&(objectCategory=Computer)(userAccountControl:1.2.840.113556.1.4.803:=4096)(_limit=100))"
-                mode="Normal" depth=99>Servers or Workstations (100 random)</a>
-              <a class="dropdown-item" href="#"
+                mode="Normal" depth=99>Servers or Workstations (100 random)</li>
+              <li class="dropdown-item"
                 query="(&(samAccountType=805306368)(userAccountControl:1.2.840.113556.1.4.803:=4194304))" mode="Normal"
-                depth=1>Accounts with no Kerberos preauth requirement</a>
+                depth=1>Accounts with no Kerberos preauth requirement</li>
             </div>
           </div>
           <button id="analyzebutton" type="button" class="btn btn-sm float-right" onclick="analyze();">Analyze</button>