I’ve created a bunch of Active Directory scripts to help identify attack points or stale accounts. This can be used for both, Blue and Red team members as they dive into abusable privileges….
I’ve combined all of my current scripts into one to allow easy execution. To see the script, visit: https://github.com/securethelogs/Securethelogs/blob/master/README.md
I wrote this script to be able to scan for this service on a Windows system. Because this uses PowerShell commands, no AV should interfere, and no additional modules are required. Once obtained, remote commands can be sent.