0% found this document useful (0 votes)

56 views2 pages

Ad, Audit

This PowerShell script analyzes an Active Directory for security flaws by checking the password policy, identifying accounts with admin permissions, users in the Domain Admins group, passwords set to never expire, and accounts that have admin permissions. The script outputs results to the screen for the password policy settings, members of the Domain Admins group, users with passwords that never expire, and accounts with admin permissions.

Uploaded by

Francis Finan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

56 views2 pages

Ad, Audit

Uploaded by

Francis Finan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Write a powershell script that will thoroughly analyse an Active directory for flaws in password policies,

admin permission, passwords that are set to never change, accounts with admin permissions. Be as
thorough as possible assuming the script executor has admin rights.

This purpose is a comprehensive security audit

# Begin Script

# Set Variables

$Domain = “YourDomainName”

$AdminGroup = “Domain Admins”

$AdminGroupMembers = Get-ADGroupMember -Identity $AdminGroup

$PasswordNeverExpires = Get-ADUser -Filter {PasswordNeverExpires -eq $true} -Properties

PasswordNeverExpires

$PasswordPolicy = Get-ADDefaultDomainPasswordPolicy

# Check Password Policy

Write-Host “Checking Password Policy…”

Write-Host “Minimum Password Length: $($PasswordPolicy.MinPasswordLength)”

Write-Host “Password Complexity: $($PasswordPolicy.PasswordComplexity)”

Write-Host “Password History: $($PasswordPolicy.PasswordHistoryCount)”

Write-Host “Maximum Password Age: $($PasswordPolicy.MaxPasswordAge.Days) days”

Write-Host “Account Lockout Threshold: $($PasswordPolicy.LockoutThreshold)”

Write-Host “Account Lockout Duration: $($PasswordPolicy.LockoutDuration.Minutes) minutes”

Write-Host “Account Lockout Observation Window: $

($PasswordPolicy.LockoutObservationWindow.Minutes) minutes”

# Check Admin Permissions

Write-Host “Checking Admin Permissions…”

Write-Host “Members of the $AdminGroup group:”

$AdminGroupMembers | Select Name | Format-Table -AutoSize

# Check Passwords Set to Never Change

Write-Host “Checking Passwords Set to Never Change…”

Write-Host “Users with passwords set to never expire:”

$PasswordNeverExpires | Select Name | Format-Table -AutoSize

# Check Accounts with Admin Permissions

Write-Host “Checking Accounts with Admin Permissions…”

$AdminAccounts = Get-ADUser -Filter {Enabled -eq $true} -SearchBase “OU=Users,DC=$Domain” -

SearchScope Subtree -Properties MemberOf | Where-Object {$_.MemberOf -like “*$AdminGroup*”}

Write-Host “Users with admin permissions:”

$AdminAccounts | Select Name | Format-Table -AutoSize

# End Script

Conti Playbook Translated
No ratings yet
Conti Playbook Translated
32 pages
Active Directory Penetration Testing Checklist
No ratings yet
Active Directory Penetration Testing Checklist
7 pages
ADSVS v1
100% (1)
ADSVS v1
98 pages
Active Directory Security: Beyond The Easy Button: Sean Metcalf
100% (1)
Active Directory Security: Beyond The Easy Button: Sean Metcalf
109 pages
Create Bulk Users in Active Directory - Step-by-Step Guide & Free Tool
No ratings yet
Create Bulk Users in Active Directory - Step-by-Step Guide & Free Tool
17 pages
Huge List of Powershell Commands For Active Directory, Office 365 and More
No ratings yet
Huge List of Powershell Commands For Active Directory, Office 365 and More
34 pages
Invoke TrimarcADChecks
No ratings yet
Invoke TrimarcADChecks
10 pages
Local Administrator Password Management Detailed Technical Specification
No ratings yet
Local Administrator Password Management Detailed Technical Specification
24 pages
Au-Password Expiry PDF
No ratings yet
Au-Password Expiry PDF
11 pages
Datasheet: Management of Password of Local Administrator Account
No ratings yet
Datasheet: Management of Password of Local Administrator Account
4 pages
How To Get AD Users Password Expiration Date
No ratings yet
How To Get AD Users Password Expiration Date
3 pages
Fixing User Accounts Flagged As System Accounts - The UserAccountControl AD Attribute
No ratings yet
Fixing User Accounts Flagged As System Accounts - The UserAccountControl AD Attribute
4 pages
It Governance Management en
No ratings yet
It Governance Management en
32 pages
Ad Self Service Plus Data Sheet
No ratings yet
Ad Self Service Plus Data Sheet
2 pages
Local Administrator Password Management Detailed Technical Specification
No ratings yet
Local Administrator Password Management Detailed Technical Specification
24 pages
Abusing Laps Paper
No ratings yet
Abusing Laps Paper
10 pages
Active Directory Exploitation Cheat Sheet by S1Ckb0Y1337
100% (1)
Active Directory Exploitation Cheat Sheet by S1Ckb0Y1337
28 pages
Import Ad Users Powers Hell
No ratings yet
Import Ad Users Powers Hell
1 page
Securing Active Directory Domain Services
No ratings yet
Securing Active Directory Domain Services
45 pages
QUEST - 10 Steps To Cleaning Up Act - 0
No ratings yet
QUEST - 10 Steps To Cleaning Up Act - 0
26 pages
All Adds Powershell Command
No ratings yet
All Adds Powershell Command
6 pages
Creating An Ou Description Script Code
No ratings yet
Creating An Ou Description Script Code
12 pages
Cobalt Strike Manual 1658430628
No ratings yet
Cobalt Strike Manual 1658430628
30 pages
Windows Server 2016 (Directory Services Practical Exercises)
No ratings yet
Windows Server 2016 (Directory Services Practical Exercises)
27 pages
WPWSH
No ratings yet
WPWSH
2 pages
User Attributes AD Command
No ratings yet
User Attributes AD Command
3 pages
Important Active Directory Attributes PDF
No ratings yet
Important Active Directory Attributes PDF
15 pages
Adreport ps1 v2
No ratings yet
Adreport ps1 v2
29 pages
PowerShell Tutorial 9-16
No ratings yet
PowerShell Tutorial 9-16
8 pages
Offensive Enumeration in
No ratings yet
Offensive Enumeration in
13 pages
Resolute
No ratings yet
Resolute
9 pages
AD Study Guide 1690881837
No ratings yet
AD Study Guide 1690881837
9 pages
Security Hardening Settings For Windows Servers
No ratings yet
Security Hardening Settings For Windows Servers
5 pages
LAPS Datasheet
No ratings yet
LAPS Datasheet
4 pages
Offensive Enumeration in Ad
No ratings yet
Offensive Enumeration in Ad
13 pages
PowerShell Tutorial 17-24
No ratings yet
PowerShell Tutorial 17-24
8 pages
ADSec Assessment
No ratings yet
ADSec Assessment
6 pages
Active Directory Penetration Testing Training Online 1679836929
No ratings yet
Active Directory Penetration Testing Training Online 1679836929
10 pages
ADPowerShell QuickReference
No ratings yet
ADPowerShell QuickReference
2 pages
Adpowershellcmdlets
No ratings yet
Adpowershellcmdlets
16 pages
CIS Benchmark For Microsoft Windows Server 2022, V2.0.0, (Automated and Manual, Level 1 - Member Server) v.2
No ratings yet
CIS Benchmark For Microsoft Windows Server 2022, V2.0.0, (Automated and Manual, Level 1 - Member Server) v.2
117 pages
PENTEST Sur AD
No ratings yet
PENTEST Sur AD
2 pages
Password Reset Script - ps1
No ratings yet
Password Reset Script - ps1
2 pages
User Handling in Ad
No ratings yet
User Handling in Ad
1 page
Active Directory Security
No ratings yet
Active Directory Security
58 pages
Get - Active - Directory - Information - With - PowerShell - Script - 1737381381 L
No ratings yet
Get - Active - Directory - Information - With - PowerShell - Script - 1737381381 L
3 pages
Active Directory Useful Powershell Commands and Scripts 1739748834
No ratings yet
Active Directory Useful Powershell Commands and Scripts 1739748834
49 pages
Network Drive Audit Script
No ratings yet
Network Drive Audit Script
2 pages
Network Drive Audit Script
No ratings yet
Network Drive Audit Script
2 pages
Mastering Active Directory Management With Powershell
No ratings yet
Mastering Active Directory Management With Powershell
6 pages
DCAudit Upgrade
No ratings yet
DCAudit Upgrade
5 pages
Active Directory Pentest Course
No ratings yet
Active Directory Pentest Course
17 pages
Gamma Aippt
No ratings yet
Gamma Aippt
10 pages
Most Used Powershell Command
No ratings yet
Most Used Powershell Command
13 pages
Active Directory
No ratings yet
Active Directory
7 pages
Learn JavaScript in 24 Hours
From Everand
Learn JavaScript in 24 Hours
Alex Nordeen
3.5/5 (5)
Coding & Dev Tools 300+ Prompts Collection
From Everand
Coding & Dev Tools 300+ Prompts Collection
Hema
No ratings yet
Ian Talks JS A-Z: WebDevAtoZ, #1
From Everand
Ian Talks JS A-Z: WebDevAtoZ, #1
Ian Eress
No ratings yet
Inspiring Powershell Articles
From Everand
Inspiring Powershell Articles
Murat Yildirimoglu
No ratings yet
How to a Developers Guide to 4k: Developer edition, #3
From Everand
How to a Developers Guide to 4k: Developer edition, #3
Xinc Cyberwizard
No ratings yet

Ad, Audit

Uploaded by

Ad, Audit

Uploaded by

Write a powershell script that will thoroughly analyse an Active directory for flaws in password policies,

This purpose is a comprehensive security audit

$AdminGroup = “Domain Admins”

$AdminGroupMembers = Get-ADGroupMember -Identity $AdminGroup

$PasswordNeverExpires = Get-ADUser -Filter {PasswordNeverExpires -eq $true} -Properties

# Check Password Policy

Write-Host “Checking Password Policy…”

Write-Host “Minimum Password Length: $($PasswordPolicy.MinPasswordLength)”

Write-Host “Password Complexity: $($PasswordPolicy.PasswordComplexity)”

Write-Host “Password History: $($PasswordPolicy.PasswordHistoryCount)”

Write-Host “Maximum Password Age: $($PasswordPolicy.MaxPasswordAge.Days) days”

Write-Host “Account Lockout Threshold: $($PasswordPolicy.LockoutThreshold)”

Write-Host “Account Lockout Duration: $($PasswordPolicy.LockoutDuration.Minutes) minutes”

Write-Host “Account Lockout Observation Window: $

# Check Admin Permissions

Write-Host “Checking Admin Permissions…”

Write-Host “Members of the $AdminGroup group:”

$AdminGroupMembers | Select Name | Format-Table -AutoSize

Write-Host “Checking Passwords Set to Never Change…”

Write-Host “Users with passwords set to never expire:”

$PasswordNeverExpires | Select Name | Format-Table -AutoSize

# Check Accounts with Admin Permissions

Write-Host “Checking Accounts with Admin Permissions…”

$AdminAccounts = Get-ADUser -Filter {Enabled -eq $true} -SearchBase “OU=Users,DC=$Domain” -

Write-Host “Users with admin permissions:”

$AdminAccounts | Select Name | Format-Table -AutoSize

You might also like