pingcastle
access-manager
pingcastle | access-manager | |
---|---|---|
16 | 22 | |
2,129 | 230 | |
- | 0.9% | |
5.6 | 4.2 | |
2 months ago | 9 months ago | |
C# | C# | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pingcastle
-
Open source vulnerability scanner
I use OpenVas (on Kali) and PingCastle (on Windows).
-
PingCastle and Active Directory hardening
Hi! I just ran PingCastle and I got two major issues:
-
Server 2016 - Enterprise Key Admins GPO linking delegation at the domain level & the domain controller OU level
You can also run these types of assessments yourself using tools such as - https://www.purple-knight.com/ - and - https://www.pingcastle.com - both will provide very detailed reports and steps for remediation.
- Specific user account breaks any computers domain connection is logs into... Stumped!
-
AD security post ransomware :(
https://www.pingcastle.com/ (free open source tool)
-
Active Directory Security Tools
PingCastle - the OG AD hygiene scanner - https://www.pingcastle.com/
-
Resetting Password permissions
Create a security group and delegate permissions to that. I suggest you get a copy of Ping Castle and do an AD scan and figure out what else is misconfigured. https://www.pingcastle.com/
-
Azure AD auditing tools
Try PingCastle ! The easiest and gives you lot of info + remmediation
- Domain Admin Security Training
- Best solutions to check rights, access and general security
access-manager
-
item level targeting
i use https://github.com/lithnet/access-manager as a pam. it gives you more control and insight into who is using admin access and that they only have it for a short period of time.
-
How to find out how many users have been given local admin rights on their machines?
That's where JIT credentials come into play for people that need to install their own software. You can fairly easily set up something like that with LAPS or Lithnet (or both, https://github.com/lithnet/access-manager). If you have that many endpoints that need that much admin access, then any sort of ransomware is going to mess things up real fast if it gets in, and you'll be spending a lot more than 30-40 hours just getting things back up and running.
-
Resetting Password permissions
or you could use https://github.com/lithnet/access-manager
- LAPS in small organization
- How does LAPS make things more secure?
- How do you manage users that need temp Admin access to company owned assets?
- Users needing local admin rights
-
Exporting LAP a good idea?
For example, Lithnet Access Manager is a relatively low-cost and open-source solution that can be rolled out in tandem with LAPS and then replace it if you need the extra features.
-
On premises MFA requirements conflicts with LAPS usage
Just in time Access, this is what I setup on our domain, I'm sure there are others but this is free and easy to setup. The Enterprise Edition is cheap as well. https://github.com/lithnet/access-manager
- PCI and LAPS
What are some alternatives?
BloodHound - Six Degrees of Domain Admin
passcore - A self-service password management tool for Active Directory
GOAD - game of active directory
macOSLAPS - Swift binary that will change a local administrator password to a random generated password. Similar behavior to LAPS for Windows
Kerberos.NET - A Kerberos implementation built entirely in managed code.
laps-web - A web site for managing access to local admin passwords managed by Microsoft LAPS
Adalanche - Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
LAPS-WebUI - A nice and simple Web Interface for LAPS (Local Administrator Password Solution)
11Bchecker
SharpLAPS - Retrieve LAPS password from LDAP
AutomatedLab - AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2022, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
myADMonitor - myADMonitor is an open-source Active Directory changes tracking tool