MicrosoftFirst off all, great article! Thanks!
I'm actually convinced that the last row of Supported Encryption Types, 31 (0x1F), has an (Excel range?) typo.
31 | 0x1F | DES+A1:C33_CBC_MD5, DES_CBC_MD5, RC4, AES 128, AES 256 |
It should be: DES_CBC_CRC, DES_CBC_MD5, RC4-HMAC, AES128-CTS-HMAC-SHA1-96, AES256-CTS-HMAC-SHA1-96
or perhaps somewhat shorter: DES_CBC_CRC, DES_CBC_MD5, RC4, AES128, AES256
For a few years now I've seen many scripts passing by using your Supported Encryption Type list, and all of them copy-pasted the exact same descriptions, including the typo which is actually funny though 😉
Also, slightly off-topic, the https://docs.microsoft.com/en-us/archive/blogs/petergu/interpreting-the-supportedencryptiontypes-registry-key link is out-dated. Perhaps you should use the following link: https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-kile/6cfc7b50-11ed-4b4d-846d-6f08f0812919?redirectedfrom=MSDN
