DC Sonar: Analyzing AD domains for security risks related to user accounts

DC Sonar

Analyzing AD domains for security risks related to user accounts

Architecture

For the visual descriptions, open the diagram files using the diagrams.net tool.

The app consists of:

Functionality

The DC Sonar Community provides functionality for analyzing AD domains for security risks related to accounts:

  • Register analyzing AD domain in the app

  • See the statuses of domain analyzing processes

  • Dump and brute NTLM hashes from set AD domains to list accounts with weak and vulnerable passwords

  • Analyze AD domain accounts to list ones with never expired passwords

  • Analyze AD domain accounts by their NTLM password hashes to determine accounts and domains where passwords repeat

Install & Use

Copyright (c) 2022 https://github.com/ST1LLY