API Reference
Class
WeakEncryptionAccountDetector
Provides methods to locate accounts that only support DES or RC4 encryption.
Inheritance
- Object
- WeakEncryptionAccountDetector
Constructors
public WeakEncryptionAccountDetector(Func<String, IEnumerable<String>> fetchAccounts = null, Func<IEnumerable<String>> enumerateDomains = null) #Initializes a new instance of the WeakEncryptionAccountDetector class.
Parameters
- fetchAccounts System.Func{System.String,System.Collections.Generic.IEnumerable{System.String}} = null
- Optional delegate retrieving weak encryption accounts for a domain.
- enumerateDomains System.Func{System.Collections.Generic.IEnumerable{System.String}} = null
- Optional delegate returning domain names to query.
Methods
public Void CheckDomain(String domainName = null) #Returns:
VoidChecks a single domain and logs warnings for accounts using only DES or RC4 encryption.
Parameters
- domainName System.String = null
- Target domain or null for the current domain.
public static IEnumerable<String> FilterAccounts(IEnumerable<ValueTuple<String, Nullable<Int32>>> accounts) #Returns:
IEnumerable<String>Filters provided account data for DES- or RC4-only encryption support.
Parameters
- accounts System.Collections.Generic.IEnumerable{System.ValueTuple{System.String,System.Nullable{System.Int32}}}
- Tuple containing account name and supported encryption types.
Returns
Collection of SAM account names.
GetAccounts 2 overloads
public IEnumerable<String> GetAccounts(String domainName) #Returns:
IEnumerable<String>Retrieves accounts in the specified domain that only support DES or RC4.
Parameters
- domainName System.String
- Target domain name.
Returns
Collection of SAM account names.
public IEnumerable<String> GetAccounts() #Returns:
IEnumerable<String>Retrieves accounts across all domains returned by the enumerator.
Returns
Collection of SAM account names.