image
PowerShell Script to perform a quick AD audit _____ ____ _____ _ _ _ | _ | | _ |_ _ _| |_| |_ | | | | | | | | . | | _| |__|__|____/ |__|__|___|___|_|_| by phillips321 If you have any decent powershell one liners that could be used in the script please let me know. I'm trying to keep this script as a single file with no requirements on external tools (other than ntdsutil and cmd.exe) Run directly on a DC using a DA. If you don't trust the code I suggest reading it first and you'll see it's all harmless! (But shouldn't you be doing that anyway with code you download off the net and then run as DA??) What this does Device Information Get-HostDetails Domain Audit Get-MachineAccountQuota Get-SMB1Support Get-FunctionalLevel Get-DCsNotOwnedByDA Domain Trust Audit Get-DomainTrusts User Accounts Audit Get-InactiveAccounts Get-DisabledAccounts Get-AdminAccountChecks Get-NULLSessions Get-AdminSDHolders Get-ProtectedUsers Password Information Audit Get-AccountPassDontExpire Get-UserPasswordNotChangedRecently Get-PasswordPolicy Dumps NTDS.dit Get-NTDSdit Computer Objects Audit Get-OldBoxes GPO audit (and checking SYSVOL for passwords) Get-GPOtoFile Get-GPOsPerOU Get-SYSVOLXMLS Check Generic Group AD Permissions Get-OUPerms Check For Existence of LAPS in domain Get-LAPSStatus Check For Existence of Authentication Polices and Silos …