¶ Adaudit
https://github.com/phillips321/adaudit
¶ About
PowerShell Script to perform a quick AD audit.
¶ What it does:
- Device Information
- Domain Audit
- Domain Trust Audit
- User Accounts Audit
- Password Information Audit
- Dumps NTDS.dit
- Computer Objects Audit
- GPO audit (and checking SYSVOL for passwords)
- Check Generic Group AD Permissions
- Check For Existence of LAPS in domain
- Check For Existence of Authentication Polices and Silos
- Check for insecure DNS zones
- Check for newly created users and groups
¶ Usage
- -all runs all checks, e.g.
AdAudit.ps1 -all
¶ Screenshots of results
¶ Users
¶ Admins
¶ Other
¶ Host
¶ How to start?
You can find this here.