ReconnaissanceDetector

Namespace ADPlayground.Audit

Assembly ADPlayground

Detects reconnaissance activity such as group enumeration.

Inheritance

public ReconnaissanceDetector(Func<String, IEnumerable<ReconnaissanceEvent>> getEvents = null) #

Initializes a new instance of the ReconnaissanceDetector class.

getEvents System.Func{System.String,System.Collections.Generic.IEnumerable{ADPlayground.Audit.ReconnaissanceEvent}} = null optionalposition: 0: Delegate returning security log events.

public IEnumerable<ReconnaissanceEvent> GetEvents(String computerName = null) #

Returns: IEnumerable<ReconnaissanceEvent>

Retrieves reconnaissance related events.