TestimoX

API Reference

Class

SysvolNetlogonAnalyzer

Edit on GitHub
Namespace ADPlayground.Gpo
Assembly ADPlayground
Source ADPlayground/Gpo/SysvolNetlogonAnalyzer.cs:23
Modifiers static

Scaffolding: analyzes SYSVOL/NETLOGON content and permissions.

Inheritance

  • Object
  • SysvolNetlogonAnalyzer

Methods

public static IReadOnlyList<NetlogonSecurityRow> GetNetlogonSecurity(String domainName = null, String computerName = null, Boolean ownerOnly = false, Boolean skipOwner = false, Int32 scanCap = 200000, Int32 maxRows = 500000) #
ADPlayground/Gpo/SysvolNetlogonAnalyzer.cs:171
Returns: IReadOnlyList<NetlogonSecurityRow>

Enumerates NETLOGON owner and ACL entries similarly to legacy GPOZaurr output.

Parameters

domainName System.String = null optionalposition: 0
computerName System.String = null optionalposition: 1
ownerOnly System.Boolean = false optionalposition: 2
skipOwner System.Boolean = false optionalposition: 3
scanCap System.Int32 = 200000 optionalposition: 4
maxRows System.Int32 = 500000 optionalposition: 5
public static IReadOnlyList<SysvolContentRow> GetSysvolContent(String domainName = null, String computerName = null, Int32 scanCap = 500000) #
ADPlayground/Gpo/SysvolNetlogonAnalyzer.cs:23
Returns: IReadOnlyList<SysvolContentRow>

Returns summary of content under common SYSVOL/NETLOGON locations.

Parameters

domainName System.String = null optionalposition: 0
computerName System.String = null optionalposition: 1
scanCap System.Int32 = 500000 optionalposition: 2
public static IReadOnlyList<SysvolPermissionIssueRow> GetSysvolPermissionIssues(String domainName = null, String computerName = null, Int32 scanCap = 50000, Int32 maxFindings = 5000) #
ADPlayground/Gpo/SysvolNetlogonAnalyzer.cs:57
Returns: IReadOnlyList<SysvolPermissionIssueRow>

Scans common SYSVOL/NETLOGON locations for permission issues such as broad-group write access and blocked inheritance flags.

Parameters

domainName System.String = null optionalposition: 0
computerName System.String = null optionalposition: 1
scanCap System.Int32 = 50000 optionalposition: 2
maxFindings System.Int32 = 5000 optionalposition: 3