-
Notifications
You must be signed in to change notification settings - Fork 58
Recon Modules Domain
Retrieves a list of Domain Controllers from LDAP
[WheresMyImplant.Recon]::DomainControllers()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,DomainControllers
Retrieves a list of Domain Computers from LDAP
[WheresMyImplant.Recon]::DomainComputers()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,DomainComputers
Retrieves a list of Domain Groups from LDAP
[WheresMyImplant.Recon]::DomainGroups()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,DomainGroups
Retrieves a list of Domain Users from LDAP
[WheresMyImplant.Recon]::DomainUsers()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,DomainUsers
Retrieves a list of Accounts with Kerberos PreAuthentication Enabled
[WheresMyImplant.Recon]::KerberosPreauthentication()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,KerberosPreauthentication
Retrieves a list of accounts with Password that are set to never expire
[WheresMyImplant.Recon]::PasswordNeverExpires()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,PasswordNeverExpires
Retrieves a list of legacy accounts which do not require a password
[WheresMyImplant.Recon]::PasswordNotRequired()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,PasswordNotRequired
Retrieves a list of registered SPN
[WheresMyImplant.Recon]::ServicePrincipalName()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,ServicePrincipalName
Retrieves the attributes for LAPS enabled systems
[WheresMyImplant.Recon]::LAPS()
rundotnetdll32.exe WheresMyImplant.dll,WheresMyImplant,Recon,LAPS