Active Directory Vulnerability Assessment

Message Share Topic Printable Version Google Delicious Digg StumbleUpon Windows Live Yahoo Bookmarks reddit Facebook MySpace Newsvine Furl Topic Search Topic Options Post Reply Create New Topic

[Tutorial]

I recently conducted an Internal Vulnerability Assessment on various servers using some free and commercial tools. I would like to share some of those tools and also like to listen your recommendations and suggestions too. We shall begin with Active Directory, where all information about the domain, user credentials and network information of an organization are stored in a server. Active Directory server i.e; Domain Controller is a critical server for any organization, where by any chance if poorly configured can lead to misuse of information, leakage of confidential data and so on. So, I would post here the tools that I had used to carryout Vulnerability Assessment on Active Directory and meanwhile, you can also share your tools and suggestions here. 

Edited by Admin - 08 Jan 2010 at 5:27am

Author	Message Share Topic Printable Version Google Delicious Digg StumbleUpon Windows Live Yahoo Bookmarks reddit Facebook MySpace Newsvine Furl Topic Search Topic Options Post Reply Create New Topic
Admin Members Profile Send Private Message Find Members Posts Visit Members Homepage Add to Buddy List Forum Administrator Root Administrator Joined: 23 Jun 2009 Location: Qatar Online Status: Offline Posts: 714	Post Options Post Reply Quote Admin Report Post Quote Reply Topic: Active Directory Vulnerability Assessment Posted: 08 Jan 2010 at 5:26am
	[Tutorial] I recently conducted an Internal Vulnerability Assessment on various servers using some free and commercial tools. I would like to share some of those tools and also like to listen your recommendations and suggestions too. We shall begin with Active Directory, where all information about the domain, user credentials and network information of an organization are stored in a server. Active Directory server i.e; Domain Controller is a critical server for any organization, where by any chance if poorly configured can lead to misuse of information, leakage of confidential data and so on. So, I would post here the tools that I had used to carryout Vulnerability Assessment on Active Directory and meanwhile, you can also share your tools and suggestions here. Edited by Admin - 08 Jan 2010 at 5:27am

Admin Members Profile Send Private Message Find Members Posts Visit Members Homepage Add to Buddy List Forum Administrator Root Administrator Joined: 23 Jun 2009 Location: Qatar Online Status: Offline Posts: 714	Post Options Post Reply Quote Admin Report Post Quote Reply Posted: 10 Jan 2010 at 9:26pm
	MaxPowerSoft Active Directory Reports This tool works well in Windows 2008/2003/2000 and NT based Active Directory Servers. It's a commercial tool but the trial period is enough to do your auditing stuff on Active Directory. Below are some of auditing data that I usually retrieve from DC using this tool Default Domain Policy and Default Domain Controllers Policy Password Last set period of Administrator account Users with allowed Dial-in access Domain computers without service pack Members of Administrator Group, Enterprise Admins Group, Domain Administrators Group List of users with never password option List of users who have never logged in Users with hidden mailboxes There are also many scripts and free tools available in the market, but this one does the job quiet easier. Just by adding domain and authenticating domain privilege, MaxPowerSoft AD reports would retrieve all required auditing information.

Admin Members Profile Send Private Message Find Members Posts Visit Members Homepage Add to Buddy List Forum Administrator Root Administrator Joined: 23 Jun 2009 Location: Qatar Online Status: Offline Posts: 714	Post Options Post Reply Quote Admin Report Post Quote Reply Posted: 10 Jan 2010 at 9:29pm
	MaxPowerSoft Active Directory Reports

This message is in display since you have logged in as Guest! You need to register yourself to post and reply topics. Benefits of membership * Posting and earning Stars * Copy Right Protection to your articles * Community peoples And much more...