⌘Ctrlk

Antivirus / EDR

Enumeration

Get-MpComputerStatus

Find-LAPSDelegatedGroups

Checks the rights on each computer with LAPS enabled for any groups with read access and users with "All Extended Rights." Users with "All Extended Rights" can read LAPS passwords and may be less protected than users in delegated groups, so this is worth checking for.

Find-AdmPwdExtendedRights

Find computers that have LAPS enabled when passwords expire.

Get-LAPSComputers

Firewall

Set-NetFirewallProfile -Profile Domain, Public, Private -Enabled False

Get-NetFirewallProfile | Format-Table Name, Enabled

PreviousSpray NextImpacket

Last updated 2 years ago

hashtagEnumeration

hashtagFirewall

Enumeration

Firewall