Invoke-ADEnum: Automate Active Directory Enumeration using PowerView

Invoke-ADEnum

Active Directory Enumeration

Invoke-ADEnum is an Active Directory enumeration tool designed to automate the process of gathering information from an Active Directory environment, leveraging the capabilities of PowerView.

With Invoke-ADEnum, you can quickly and efficiently enumerate various aspects of Active Directory, including forests, domains, trusts, domain controllers, users, groups, computers, shares, subnets, ACLs, OUs, GPOs, and more.

One of the features of Invoke-ADEnum is its ability to generate an Active Directory Audit Report in HTML format. Whether performing security assessments, compliance audits, or general Active Directory enumeration tasks, the report will provide a detailed overview of the Active Directory infrastructure, in an easy-to-navigate layout.

Invoke-ADEnum will generate a client-oriented report as well, which will include only relevant findings and list remediations/recommendations.

NOTE: By clicking on the tables’ titles, you can generate and download a CSV version of the results. Additionally, you have the option to export the entire HTML report in XLSX format by clicking on “Active Directory Audit” at the top of the page. The XLSX export will include a separate sheet for each table of findings.

An offline version of the tool is also available, which won’t load PowerView from the internet (useful against web filtering or lab scenarios).

Invoke-ADEnum is a tool for any IT professional working with Active Directory.

Usage

Load the script in memory:

iex(new-object net.webclient).downloadstring('https://raw.githubusercontent.com/Leo4j/Invoke-ADEnum/main/Invoke-ADEnum.ps1')

For usage, please refer to the Help page:

Check your targets first, and make sure you stay in scope

Recommended Coverage

Invoke-ADEnum -SecurityGroups -GPOsRights -LAPSReadRights -RBCD -AllGroups -SprayEmptyPasswords -UserCreatedObjects

Source: https://github.com/Leo4j/