TestimoX

API Reference

Command

Get-TestimoX

Namespace TestimoX.PowerShell
Outputs
System.Object TestimoX.Execution.RuleResultEnvelope TestimoX.Execution.RuleSummaryRow

Executes TestimoX rule source methods directly and returns typed data objects.

Examples

Authored help example

Example 1: Summarize the forest recycle bin posture for a target forest

PS>


Get-TestimoX -Rule 'ForestRecycleBinAndLifetimes' -Forest 'corp.contoso.com' -AsSummary

This is useful when you want a quick answer in a shell without generating a full HTML report.

Example 2: Mix typed C# and PowerShell rules and return the raw objects

PS>


$cs = [TestimoX.Definitions.CSharpRule]
$ps = [TestimoX.RulesPowerShell.PowerShellRule]
Get-TestimoX -IncludeRules $cs::DomainPasswordPolicy -IncludePowerShellRules $ps::ForestRecycleBinAndLifetimes -Domain 'corp.contoso.com' -Raw

Each emitted object keeps its native shape, which makes it easier to inspect all fields during rule authoring.

Example 3: Return an aggregated result object for security-focused forest rules

PS>


Get-TestimoX -Category Forest,Security -Tag 'Kerberos' -AsResult

The envelope can be serialized once and passed to another script or test harness.

Example 4: Pass custom arguments to a rule that accepts connection overrides

PS>


Get-TestimoX -Rule 'DirectoryLdapConnectivity' -DomainController 'dc01.corp.contoso.com' -Additional @{ Port = 389; UseSsl = $false }

Use this pattern when validating a specific endpoint or toggling rule-specific behavior without editing configuration files.

Common Parameters

This command supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable.

For more information, see about_CommonParameters.

Syntax

Get-TestimoX [-Additional <Hashtable>] [-AsResult] [-AsSummary] [-AsSummaryObject] [-Category <string[]>] [-Domain <string>] [-DomainController <string>] [-Forest <string>] [-Include <object[]>] [-IncludePowerShellRules <DCDFS>] [-IncludeRules <AdminPrivilegedActivityPosture>] [-Raw] [-Rule <string[]>] [-Tag <string[]>] [-Throttle <int>] [-TimeoutSeconds <int>] [<CommonParameters>]
#

Parameters

Additional Hashtable optionalposition: namedpipeline: false
Hashtable of rule-specific parameters passed only to rules that know how to consume them.
AsResult SwitchParameter optionalposition: namedpipeline: false
Returns a single envelope object containing the executed rule names, total item count, and aggregated data collection.
AsSummary SwitchParameter optionalposition: namedpipeline: false
Emits summary-shaped output when the selected rule advertises summary hints; otherwise falls back to raw objects.
AsSummaryObject SwitchParameter optionalposition: namedpipeline: false
When used with -AsSummary, emits flattened PowerShell objects instead of typed summary rows.
Category string[] optionalposition: namedpipeline: false
Filters discovery by rule category labels such as Forest, Domain, or Security.
Domain string optionalposition: namedpipeline: false
Overrides the Active Directory domain targeted by rules that support domain scoping.
DomainController string optionalposition: namedpipeline: false
Forces rules to use a specific domain controller DNS name when they need a server endpoint.
Forest string optionalposition: namedpipeline: false
Overrides the Active Directory forest targeted by rules that support forest scoping.
Include object[] optionalposition: namedpipeline: false
Additional selectors that may contain strings or enum values. These are merged with -Rule and the typed selectors to form the final rule set.
IncludePowerShellRules PowerShellRule[] optionalposition: namedpipeline: falsevalues: 89
Typed embedded PowerShell rules to execute. This is the IntelliSense-friendly alternative to specifying names with -Rule. Possible values: DCDFS, DCDiagnostics, DCDiskSpace, DCDNSForwarders, DCDnsNameServers, DCDnsResolveExternal, DCDnsResolveInternal, DCEventLogs, DCFileSystem, DCGroupPolicySYSVOLDC, DCInformation, DCLanManagerSettings, DCLanManServer, DCLDAP, DCLDAPInsecureBindings, DCMSSLegacy, DCNetSessionEnumeration, DCNetworkCardSettings, DCNTDSParameters, DCOperatingSystem, DCPingable, DCPorts, DCRDPPorts, DCRDPSecurity, DCServices, DCServiceWINRM, DCSMBProtocols, DCSMBShares, DCSMBSharesPermissions, DCTimeSettings, DCTimeSynchronizationExternal, DCTimeSynchronizationInternal, DCUNCHardenedPaths, DCWindowsFeaturesOptional, DCWindowsRemoteManagement, DCWindowsRolesAndFeatures, DCWindowsUpdates, DomainComputersUnsupported, DomainComputersUnsupportedMainstream, DomainDHCPAuthorized, DomainDNSForwarders, DomainDNSScavengingForPrimaryDNSServer, DomainDnsZonesAging, DomainDNSZonesDomain0ADEL, DomainDNSZonesForest0ADEL, DomainDomainControllers, DomainDuplicateObjects, DomainExchangeUsers, DomainGroupPolicyADM, DomainGroupPolicyAssessment, DomainGroupPolicyOwner, DomainGroupPolicyPermissionConsistency, DomainGroupPolicyPermissions, DomainGroupPolicySysvol, DomainLDAP, DomainMachineQuota, DomainNetLogonOwner, DomainOrganizationalUnitsEmpty, DomainOrganizationalUnitsProtected, DomainOrphanedForeignSecurityPrincipals, DomainPasswordComplexity, DomainRoles, DomainSecurityComputers, DomainSecurityDelegatedObjects, DomainSecurityGroupsAccountOperators, DomainSecurityGroupsSchemaAdmins, DomainSecurityKrbtgt, DomainSecurityUsers, DomainSecurityUsersAcccountAdministrator, DomainSysVolDFSR, DomainWellKnownFolders, ForestBackup, ForestConfigurationPartitionOwners, ForestConfigurationPartitionOwnersContainers, ForestDHCP, ForestDuplicateSPN, ForestOptionalFeatures, ForestOrphanedAdmins, ForestReplication, ForestReplicationStatus, ForestRoles, ForestRootKDS, ForestSiteLinks, ForestSiteLinksConnections, ForestSites, ForestSubnets, ForestTombstoneLifetime, ForestTrusts, ForestVulnerableSchemaClass
Possible values: DCDFS, DCDiagnostics, DCDiskSpace, DCDNSForwarders, DCDnsNameServers, DCDnsResolveExternal, DCDnsResolveInternal, DCEventLogs, DCFileSystem, DCGroupPolicySYSVOLDC, DCInformation, DCLanManagerSettings, DCLanManServer, DCLDAP, DCLDAPInsecureBindings, DCMSSLegacy, DCNetSessionEnumeration, DCNetworkCardSettings, DCNTDSParameters, DCOperatingSystem, DCPingable, DCPorts, DCRDPPorts, DCRDPSecurity, DCServices, DCServiceWINRM, DCSMBProtocols, DCSMBShares, DCSMBSharesPermissions, DCTimeSettings, DCTimeSynchronizationExternal, DCTimeSynchronizationInternal, DCUNCHardenedPaths, DCWindowsFeaturesOptional, DCWindowsRemoteManagement, DCWindowsRolesAndFeatures, DCWindowsUpdates, DomainComputersUnsupported, DomainComputersUnsupportedMainstream, DomainDHCPAuthorized, DomainDNSForwarders, DomainDNSScavengingForPrimaryDNSServer, DomainDnsZonesAging, DomainDNSZonesDomain0ADEL, DomainDNSZonesForest0ADEL, DomainDomainControllers, DomainDuplicateObjects, DomainExchangeUsers, DomainGroupPolicyADM, DomainGroupPolicyAssessment, DomainGroupPolicyOwner, DomainGroupPolicyPermissionConsistency, DomainGroupPolicyPermissions, DomainGroupPolicySysvol, DomainLDAP, DomainMachineQuota, DomainNetLogonOwner, DomainOrganizationalUnitsEmpty, DomainOrganizationalUnitsProtected, DomainOrphanedForeignSecurityPrincipals, DomainPasswordComplexity, DomainRoles, DomainSecurityComputers, DomainSecurityDelegatedObjects, DomainSecurityGroupsAccountOperators, DomainSecurityGroupsSchemaAdmins, DomainSecurityKrbtgt, DomainSecurityUsers, DomainSecurityUsersAcccountAdministrator, DomainSysVolDFSR, DomainWellKnownFolders, ForestBackup, ForestConfigurationPartitionOwners, ForestConfigurationPartitionOwnersContainers, ForestDHCP, ForestDuplicateSPN, ForestOptionalFeatures, ForestOrphanedAdmins, ForestReplication, ForestReplicationStatus, ForestRoles, ForestRootKDS, ForestSiteLinks, ForestSiteLinksConnections, ForestSites, ForestSubnets, ForestTombstoneLifetime, ForestTrusts, ForestVulnerableSchemaClass
IncludeRules CSharpRule[] optionalposition: namedpipeline: falsevalues: 387
Typed C# rules to execute. This is the IntelliSense-friendly alternative to specifying names with -Rule. Possible values: AdminPrivilegedActivityPosture, AdminSdHolderAclDrift, Backup, ComputersAesDisabled, ComputersObsoleteDomainControllers, ComputersObsoleteServers, ComputersObsoleteWorkstations, ComputersPrimaryGroupCompliance, ComputersRbcdExposure, ComputersUnconstrainedDelegation, ComputersUnsupported, ComputersUnsupportedMainstream, DCDNSForwaders, DFS, DHCPAuthorized, Diagnostics, DirectoryAclPostureInventory, DirectoryDangerousExtendedRights, DirectoryDefaultOuChanged, DirectoryDisplaySpecifiersForeignPaths, DirectoryEmptyOrganizationalUnits, DirectoryLdapConnectivity, DirectoryUnprotectedOus, DirectoryWellKnownFolderPosture, DiskSpace, DnsAdminsMembership, DnsDelegationRisk, DNSForwarders, DnsNameServers, DNSResolveExternal, DNSResolveInternal, DNSScavengingForPrimaryDNSServer, DNSZonesAging, DNSZonesDomain0ADEL, DnsZonesDynamicUpdatesSecure, DNSZonesForest0ADEL, DnsZonesReadExposure, DnsZonesSecurity, DomainAccountDelegationPosture, DomainAccountsReversiblePasswordStorage, DomainAdminGroupDelegationRisk, DomainAuthentication, DomainBackupMetadata, DomainBroadTrusteeDelegationExposure, DomainComputerSecurityBaselinePosture, DomainComputersLapsCoverage, DomainComputersLapsDelegation, DomainComputersLapsDsrmDelegation, DomainComputersLifecycle, DomainConstrainedDelegationOverview, DomainConstrainedDelegationTargets, DomainConstrainedDelegationToDcServices, DomainControllerAppControlRuntimeLocal, DomainControllerAuditPolicyLocal, DomainControllerBackupPostureRuntimeLocal, DomainControllerBrowserPolicyRuntimeLocal, DomainControllerCertificatePostureRuntimeLocal, DomainControllerCredentialPostureLocal, DomainControllerCriticalServices, DomainControllerDiagnosticPosture, DomainControllerDiskSpacePosture, DomainControllerDnsDynamicUpdates, DomainControllerDnsPrimaryZoneNameServerPosture, DomainControllerDnsServerPosture, DomainControllerDnsZoneTransfer, DomainControllerDsaFileLocationPostureLocal, DomainControllerEventLogPolicyLocal, DomainControllerExploitProtectionRuntimeLocal, DomainControllerFeaturePostureRuntimeLocal, DomainControllerFileSystemLocal, DomainControllerInformationPosture, DomainControllerLanManager, DomainControllerLdapChannelBinding, DomainControllerLdapConnectivity, DomainControllerLdapSigning, DomainControllerLocalIdentityRuntimeLocal, DomainControllerLogonUxUacLocal, DomainControllerLsaProtectionLocal, DomainControllerMdmPostureRuntimeLocal, DomainControllerMssLegacyNetworkPostureLocal, DomainControllerNetlogonSiteCoverage, DomainControllerNetSessionEnumerationLocal, DomainControllerNetworkAdapterPosture, DomainControllerNetworkHardeningRuntimeLocal, DomainControllerNtdsParametersLocal, DomainControllerNullSession, DomainControllerOfficePostureRuntimeLocal, DomainControllerOperatingSystemPosture, DomainControllerOptionalFeaturePostureLocal, DomainControllerPersistencePostureRuntimeLocal, DomainControllerPingPosture, DomainControllerPkiEnrollmentChannelBinding, DomainControllerPlatformSecurityRuntimeLocal, DomainControllerPortPosture, DomainControllerPrivacyPostureRuntimeLocal, DomainControllerRdpSecurityLocal, DomainControllerRebootCadence, DomainControllerRemoteAccessRuntimeLocal, DomainControllers, DomainControllersAuditPolicy, DomainControllerSchannelProtocolsLocal, DomainControllersDeploymentHealth, DomainControllersDnsAndSiteRegistration, DomainControllerSecureBootCertificateRolloutLocal, DomainControllerSmbCompliance, DomainControllerSmbSharePermissions, DomainControllerSmbShares, DomainControllerSmbSigning, DomainControllersOverallPosture, DomainControllersRodcPolicy, DomainControllersRodcSysvolWriteAccess, DomainControllersSpoolerExposure, DomainControllerSystemStateBackup, DomainControllerSysvolReplication, DomainControllerTimeServiceStatus, DomainControllerTimeSynchronizationExternal, DomainControllerTimeSynchronizationInternal, DomainControllerVsCodeExtensionsRuntimeLocal, DomainControllerWebClientDisabled, DomainControllerWindowsUpdatePosture, DomainControllerWinRmSecurityLocal, DomainDcShadowIndicators, DomainDelegationInventory, DomainDhcpAuthorizationPosture, DomainDirectoryDescriptionSecrets, DomainDirectoryHiddenObjects, DomainDnsApexAuthorityPosture, DomainDnsApplicationPartitionOwnerPosture, DomainDnsCleanupPreview, DomainDnsDanglingRecordTargets, DomainDnsDcLocatorIntegrity, DomainDnsDelegationIntegrity, DomainDnsDhcpOwnershipPosture, DomainDnsDnssecPosture, DomainDnsDynamicUpdateConfiguration, DomainDnsEventLogRetentionPosture, DomainDnsForwarderConsistency, DomainDnsForwardReverseParity, DomainDnsLoggingPosture, DomainDnsRecordAgingPosture, DomainDnsRecursiveResolverPosture, DomainDnsReverseZoneCoverage, DomainDnsRrsetTtlConsistency, DomainDnsZoneHostingConfigurationPosture, DomainDnsZonePtrAutomation, DomainDnsZoneTransferPosture, DomainDsHeuristics, DomainDuplicateAccounts, DomainExchangeUserAliasPosture, DomainFineGrainedPasswordPolicies, DomainFsmoRolePosture, DomainFSMORoles, DomainFunctionalLevel, DomainGpoAnalysis, DomainGpoAnonymousExposureConfiguration, DomainGpoBlockedInheritance, DomainGpoBrokenGpos, DomainGpoBrokenLinks, DomainGpoDangerousUserRightsExposure, DomainGpoDefaultPoliciesRecentChanges, DomainGpoDefenderAsrPolicy, DomainGpoDelegationExposure, DomainGpoDuplicates, DomainGpoEventLogPolicyBaseline, DomainGpoEveryoneAuthorizedGpo, DomainGpoEveryoneIncludesAnonymousDisabled, DomainGpoExternalArtifacts, DomainGpoFiles, DomainGpoFirewallProfilesBaseline, DomainGpoFirewallScriptBlock, DomainGpoFolderOptionsExposure, DomainGpoHardenedPaths, DomainGpoInventoryHealth, DomainGpoKdcProxyPolicy, DomainGpoKerberosClientArmoring, DomainGpoKerberosCryptoBaseline, DomainGpoKerberosKdcArmoring, DomainGpoKerberosPacHardeningBaseline, DomainGpoLapsDsrmPolicy, DomainGpoLapsPolicy, DomainGpoLdapHardening, DomainGpoLimitBlankPasswordUse, DomainGpoLinks, DomainGpoList, DomainGpoLlmnrWdigestConfiguration, DomainGpoLogonUxUacBaseline, DomainGpoLsaProtectionBaseline, DomainGpoMissingSysvolFiles, DomainGpoNameResolutionBaseline, DomainGpoNetlogonConfiguration, DomainGpoNetSessionHardening, DomainGpoNoLmHash, DomainGpoNtlmRestrictConfiguration, DomainGpoOrganizationalUnit, DomainGpoOwners, DomainGpoPassword, DomainGpoPermissionBaseline, DomainGpoPermissionConsistency, DomainGpoPermissions, DomainGpoPermissionsAdministrative, DomainGpoPermissionsRead, DomainGpoPermissionsRoot, DomainGpoPermissionsUnknown, DomainGpoPku2uPolicy, DomainGpoPowerShellAuditing, DomainGpoPowerShellLoggingBaseline, DomainGpoRdpRedirectionPolicyBaseline, DomainGpoRecoveryConsoleAutoAdminLogon, DomainGpoRedirect, DomainGpoSchannelPolicyBaseline, DomainGpoScriptPreferenceExposure, DomainGpoServicePolicy, DomainGpoSysvolPosture, DomainGpoTerminalServicesTimeout, DomainGpoTimeServicePolicy, DomainGpoUpdates, DomainGpoWinRmPolicyBaseline, DomainGpoWpadHardeningExample, DomainGpoWsusConfiguration, DomainJoinComputerOwner, DomainKerberosCryptoOverview, DomainKerberosDesConfiguration, DomainKerberosDuplicateSpns, DomainKerberosRc4Only, DomainLapsOuDelegation, DomainLDAP, DomainMachineAccountQuota, DomainObjectsRecentCreation, DomainObjectStatistics, DomainOuDelegationRisk, DomainPasswordPolicy, DomainPasswordPolicyRollup, DomainPrimaryGroupReadability, DomainPrivilegedGroupOwnerRisk, DomainPrivilegedGroupRecentChanges, DomainRidMasterHealth, DomainServiceAccountsAdminCount, DomainServiceAccountsSpnHygiene, DomainServiceAccountsUsage, DomainShadowCredentialsRisk, DomainSpnHygieneOverview, DomainSysvolReplicationPosture, DomainTechnicalAzureAdSso, DomainTier0ExposureGraph, DomainTrustsConfiguration, DomainTrustSidHistory, DomainUnprivilegedGroupRecentChanges, DomainUsersBadPasswordCount, DomainUsersCredentialHygiene, DomainUsersSmartCardConfiguration, DsHeuristicsCompliance, DummyDomainStaleAdminAccounts, DummyExampleNew, DummyForestBackup, DummyForestReplicationStatus, DummySystemHealth, DummyTestimoDebug, DuplicateObjects, DuplicateSPN, EventLogs, ExchangeUsers, FileSystem, ForestBackupMetadataPosture, ForestConfigurationPartitionContainerOwnerPosture, ForestConfigurationPartitionOwnerPosture, ForestConfigurationPartitionOwners, ForestConfigurationPartitionOwnersContainer, ForestDHCP, ForestDhcpInfrastructurePosture, ForestDirectoryDiscoveryDiagnostics, ForestDuplicateComputerHostnames, ForestExchangeSchemaVulnerabilityPosture, ForestFsmoRolePosture, ForestFSMORoles, ForestFunctionalLevel, ForestKdsRootKeyPosture, ForestKerberosDuplicateSpns, ForestOptionalFeaturePosture, ForestPkiCertNoobFindings, ForestPkiConfiguration, ForestPkiTemplatesConfiguration, ForestPkiTemplatesRiskOverview, ForestRecycleBinAndLifetimes, ForestReplicationPosture, ForestSchemaDefaultSecurityDescriptorChanges, ForestSchemaJavaExposure, ForestSchemaLapsAttributes, ForestShadowPrincipalsPosture, ForestSiteConnectionPosture, ForestSiteLinkPosture, ForestSubnetCoveragePosture, ForestSubnets, ForestTrustsOverview, GroupPolicy, GroupPolicyADM, GroupPolicyOwners, GroupPolicyPermission, GroupPolicyPermissionConsistency, GroupPolicySysvol, GroupPolicySYSVOLDC, GroupsCriticalMembership, GroupsForeignSecurityPrincipalsPrivilegedExposure, GroupsOperatorsEmpty, GroupsOrphanedForeignSecurityPrincipals, GroupsPreWindows2000Exposure, GroupsPrivilegedDelegationRisk, Information, KerberosSecurity, KrbtgtHealth, LanManagerSettings, LanManServer, Ldap, LdapInsecureBindings, MachineQuota, MSSLegacy, NetLogonOwner, NetSessionEnumeration, NetworkCardSettings, NTDSParameters, OperatingSystem, OptionalFeatures, OrganizationalUnitsEmpty, OrganizationalUnitsProtected, OrphanedAdmins, OrphanedSecurityPrincipals, PasswordComplexity, Pingable, PkiCaRocaConfirmed, PkiCaRocaSuspected, PkiCaWeakKeySize, PkiCaWeakRsaComponent, PkiCaWeakSignature, PkiEnrollmentHttpsRequired, Ports, RDPPorts, RDPSecurity, Replication, ReplicationStatus, RootDseAnonymousBind, RootKDS, SecurityComputers, SecurityDelegatedObjects, SecurityGroupsAccountOperators, SecurityGroupsSchemaAdmins, SecurityKRBGT, SecurityUsers, SecurityUsersAccountAdministrator, ServersGpoSmbSigningBaseline, Services, ServiceWINRM, SiteLinks, SiteLinksConnections, Sites, SMBProtocols, SMBShares, SMBSharesPermissions, StaleAdminAccountsManual, SysVOLDFSR, SysvolGpoConsistency, SysvolLegacyAdmFiles, SysvolNetlogonOwners, SysvolNetlogonPermissions, TimeSettings, TimeSynchronizationExternal, TimeSynchronizationInternal, TombstoneLifetime, TrustAzureAdSso, Trusts, UNCHardenedPaths, UsersAdminProtection, UsersBuiltInAdministrator, UsersGppStoredPasswords, UsersGuestAccount, UsersPasswordNeverExpires, UsersPrimaryGroupCompliance, UsersPrivilegedDelegationProtection, UsersPrivilegedEmailPresent, UsersPrivilegedInactivity, UsersStaleAccounts, UsersUnconstrainedDelegation, VurnerableSchemaClass, WellKnownFolders, WindowsFeaturesOptional, WindowsRemoteManagement, WindowsRolesAndFeatures, WindowsUpdates, WorkstationsGpoSmbSigningBaseline
Possible values: AdminPrivilegedActivityPosture, AdminSdHolderAclDrift, Backup, ComputersAesDisabled, ComputersObsoleteDomainControllers, ComputersObsoleteServers, ComputersObsoleteWorkstations, ComputersPrimaryGroupCompliance, ComputersRbcdExposure, ComputersUnconstrainedDelegation, ComputersUnsupported, ComputersUnsupportedMainstream, DCDNSForwaders, DFS, DHCPAuthorized, Diagnostics, DirectoryAclPostureInventory, DirectoryDangerousExtendedRights, DirectoryDefaultOuChanged, DirectoryDisplaySpecifiersForeignPaths, DirectoryEmptyOrganizationalUnits, DirectoryLdapConnectivity, DirectoryUnprotectedOus, DirectoryWellKnownFolderPosture, DiskSpace, DnsAdminsMembership, DnsDelegationRisk, DNSForwarders, DnsNameServers, DNSResolveExternal, DNSResolveInternal, DNSScavengingForPrimaryDNSServer, DNSZonesAging, DNSZonesDomain0ADEL, DnsZonesDynamicUpdatesSecure, DNSZonesForest0ADEL, DnsZonesReadExposure, DnsZonesSecurity, DomainAccountDelegationPosture, DomainAccountsReversiblePasswordStorage, DomainAdminGroupDelegationRisk, DomainAuthentication, DomainBackupMetadata, DomainBroadTrusteeDelegationExposure, DomainComputerSecurityBaselinePosture, DomainComputersLapsCoverage, DomainComputersLapsDelegation, DomainComputersLapsDsrmDelegation, DomainComputersLifecycle, DomainConstrainedDelegationOverview, DomainConstrainedDelegationTargets, DomainConstrainedDelegationToDcServices, DomainControllerAppControlRuntimeLocal, DomainControllerAuditPolicyLocal, DomainControllerBackupPostureRuntimeLocal, DomainControllerBrowserPolicyRuntimeLocal, DomainControllerCertificatePostureRuntimeLocal, DomainControllerCredentialPostureLocal, DomainControllerCriticalServices, DomainControllerDiagnosticPosture, DomainControllerDiskSpacePosture, DomainControllerDnsDynamicUpdates, DomainControllerDnsPrimaryZoneNameServerPosture, DomainControllerDnsServerPosture, DomainControllerDnsZoneTransfer, DomainControllerDsaFileLocationPostureLocal, DomainControllerEventLogPolicyLocal, DomainControllerExploitProtectionRuntimeLocal, DomainControllerFeaturePostureRuntimeLocal, DomainControllerFileSystemLocal, DomainControllerInformationPosture, DomainControllerLanManager, DomainControllerLdapChannelBinding, DomainControllerLdapConnectivity, DomainControllerLdapSigning, DomainControllerLocalIdentityRuntimeLocal, DomainControllerLogonUxUacLocal, DomainControllerLsaProtectionLocal, DomainControllerMdmPostureRuntimeLocal, DomainControllerMssLegacyNetworkPostureLocal, DomainControllerNetlogonSiteCoverage, DomainControllerNetSessionEnumerationLocal, DomainControllerNetworkAdapterPosture, DomainControllerNetworkHardeningRuntimeLocal, DomainControllerNtdsParametersLocal, DomainControllerNullSession, DomainControllerOfficePostureRuntimeLocal, DomainControllerOperatingSystemPosture, DomainControllerOptionalFeaturePostureLocal, DomainControllerPersistencePostureRuntimeLocal, DomainControllerPingPosture, DomainControllerPkiEnrollmentChannelBinding, DomainControllerPlatformSecurityRuntimeLocal, DomainControllerPortPosture, DomainControllerPrivacyPostureRuntimeLocal, DomainControllerRdpSecurityLocal, DomainControllerRebootCadence, DomainControllerRemoteAccessRuntimeLocal, DomainControllers, DomainControllersAuditPolicy, DomainControllerSchannelProtocolsLocal, DomainControllersDeploymentHealth, DomainControllersDnsAndSiteRegistration, DomainControllerSecureBootCertificateRolloutLocal, DomainControllerSmbCompliance, DomainControllerSmbSharePermissions, DomainControllerSmbShares, DomainControllerSmbSigning, DomainControllersOverallPosture, DomainControllersRodcPolicy, DomainControllersRodcSysvolWriteAccess, DomainControllersSpoolerExposure, DomainControllerSystemStateBackup, DomainControllerSysvolReplication, DomainControllerTimeServiceStatus, DomainControllerTimeSynchronizationExternal, DomainControllerTimeSynchronizationInternal, DomainControllerVsCodeExtensionsRuntimeLocal, DomainControllerWebClientDisabled, DomainControllerWindowsUpdatePosture, DomainControllerWinRmSecurityLocal, DomainDcShadowIndicators, DomainDelegationInventory, DomainDhcpAuthorizationPosture, DomainDirectoryDescriptionSecrets, DomainDirectoryHiddenObjects, DomainDnsApexAuthorityPosture, DomainDnsApplicationPartitionOwnerPosture, DomainDnsCleanupPreview, DomainDnsDanglingRecordTargets, DomainDnsDcLocatorIntegrity, DomainDnsDelegationIntegrity, DomainDnsDhcpOwnershipPosture, DomainDnsDnssecPosture, DomainDnsDynamicUpdateConfiguration, DomainDnsEventLogRetentionPosture, DomainDnsForwarderConsistency, DomainDnsForwardReverseParity, DomainDnsLoggingPosture, DomainDnsRecordAgingPosture, DomainDnsRecursiveResolverPosture, DomainDnsReverseZoneCoverage, DomainDnsRrsetTtlConsistency, DomainDnsZoneHostingConfigurationPosture, DomainDnsZonePtrAutomation, DomainDnsZoneTransferPosture, DomainDsHeuristics, DomainDuplicateAccounts, DomainExchangeUserAliasPosture, DomainFineGrainedPasswordPolicies, DomainFsmoRolePosture, DomainFSMORoles, DomainFunctionalLevel, DomainGpoAnalysis, DomainGpoAnonymousExposureConfiguration, DomainGpoBlockedInheritance, DomainGpoBrokenGpos, DomainGpoBrokenLinks, DomainGpoDangerousUserRightsExposure, DomainGpoDefaultPoliciesRecentChanges, DomainGpoDefenderAsrPolicy, DomainGpoDelegationExposure, DomainGpoDuplicates, DomainGpoEventLogPolicyBaseline, DomainGpoEveryoneAuthorizedGpo, DomainGpoEveryoneIncludesAnonymousDisabled, DomainGpoExternalArtifacts, DomainGpoFiles, DomainGpoFirewallProfilesBaseline, DomainGpoFirewallScriptBlock, DomainGpoFolderOptionsExposure, DomainGpoHardenedPaths, DomainGpoInventoryHealth, DomainGpoKdcProxyPolicy, DomainGpoKerberosClientArmoring, DomainGpoKerberosCryptoBaseline, DomainGpoKerberosKdcArmoring, DomainGpoKerberosPacHardeningBaseline, DomainGpoLapsDsrmPolicy, DomainGpoLapsPolicy, DomainGpoLdapHardening, DomainGpoLimitBlankPasswordUse, DomainGpoLinks, DomainGpoList, DomainGpoLlmnrWdigestConfiguration, DomainGpoLogonUxUacBaseline, DomainGpoLsaProtectionBaseline, DomainGpoMissingSysvolFiles, DomainGpoNameResolutionBaseline, DomainGpoNetlogonConfiguration, DomainGpoNetSessionHardening, DomainGpoNoLmHash, DomainGpoNtlmRestrictConfiguration, DomainGpoOrganizationalUnit, DomainGpoOwners, DomainGpoPassword, DomainGpoPermissionBaseline, DomainGpoPermissionConsistency, DomainGpoPermissions, DomainGpoPermissionsAdministrative, DomainGpoPermissionsRead, DomainGpoPermissionsRoot, DomainGpoPermissionsUnknown, DomainGpoPku2uPolicy, DomainGpoPowerShellAuditing, DomainGpoPowerShellLoggingBaseline, DomainGpoRdpRedirectionPolicyBaseline, DomainGpoRecoveryConsoleAutoAdminLogon, DomainGpoRedirect, DomainGpoSchannelPolicyBaseline, DomainGpoScriptPreferenceExposure, DomainGpoServicePolicy, DomainGpoSysvolPosture, DomainGpoTerminalServicesTimeout, DomainGpoTimeServicePolicy, DomainGpoUpdates, DomainGpoWinRmPolicyBaseline, DomainGpoWpadHardeningExample, DomainGpoWsusConfiguration, DomainJoinComputerOwner, DomainKerberosCryptoOverview, DomainKerberosDesConfiguration, DomainKerberosDuplicateSpns, DomainKerberosRc4Only, DomainLapsOuDelegation, DomainLDAP, DomainMachineAccountQuota, DomainObjectsRecentCreation, DomainObjectStatistics, DomainOuDelegationRisk, DomainPasswordPolicy, DomainPasswordPolicyRollup, DomainPrimaryGroupReadability, DomainPrivilegedGroupOwnerRisk, DomainPrivilegedGroupRecentChanges, DomainRidMasterHealth, DomainServiceAccountsAdminCount, DomainServiceAccountsSpnHygiene, DomainServiceAccountsUsage, DomainShadowCredentialsRisk, DomainSpnHygieneOverview, DomainSysvolReplicationPosture, DomainTechnicalAzureAdSso, DomainTier0ExposureGraph, DomainTrustsConfiguration, DomainTrustSidHistory, DomainUnprivilegedGroupRecentChanges, DomainUsersBadPasswordCount, DomainUsersCredentialHygiene, DomainUsersSmartCardConfiguration, DsHeuristicsCompliance, DummyDomainStaleAdminAccounts, DummyExampleNew, DummyForestBackup, DummyForestReplicationStatus, DummySystemHealth, DummyTestimoDebug, DuplicateObjects, DuplicateSPN, EventLogs, ExchangeUsers, FileSystem, ForestBackupMetadataPosture, ForestConfigurationPartitionContainerOwnerPosture, ForestConfigurationPartitionOwnerPosture, ForestConfigurationPartitionOwners, ForestConfigurationPartitionOwnersContainer, ForestDHCP, ForestDhcpInfrastructurePosture, ForestDirectoryDiscoveryDiagnostics, ForestDuplicateComputerHostnames, ForestExchangeSchemaVulnerabilityPosture, ForestFsmoRolePosture, ForestFSMORoles, ForestFunctionalLevel, ForestKdsRootKeyPosture, ForestKerberosDuplicateSpns, ForestOptionalFeaturePosture, ForestPkiCertNoobFindings, ForestPkiConfiguration, ForestPkiTemplatesConfiguration, ForestPkiTemplatesRiskOverview, ForestRecycleBinAndLifetimes, ForestReplicationPosture, ForestSchemaDefaultSecurityDescriptorChanges, ForestSchemaJavaExposure, ForestSchemaLapsAttributes, ForestShadowPrincipalsPosture, ForestSiteConnectionPosture, ForestSiteLinkPosture, ForestSubnetCoveragePosture, ForestSubnets, ForestTrustsOverview, GroupPolicy, GroupPolicyADM, GroupPolicyOwners, GroupPolicyPermission, GroupPolicyPermissionConsistency, GroupPolicySysvol, GroupPolicySYSVOLDC, GroupsCriticalMembership, GroupsForeignSecurityPrincipalsPrivilegedExposure, GroupsOperatorsEmpty, GroupsOrphanedForeignSecurityPrincipals, GroupsPreWindows2000Exposure, GroupsPrivilegedDelegationRisk, Information, KerberosSecurity, KrbtgtHealth, LanManagerSettings, LanManServer, Ldap, LdapInsecureBindings, MachineQuota, MSSLegacy, NetLogonOwner, NetSessionEnumeration, NetworkCardSettings, NTDSParameters, OperatingSystem, OptionalFeatures, OrganizationalUnitsEmpty, OrganizationalUnitsProtected, OrphanedAdmins, OrphanedSecurityPrincipals, PasswordComplexity, Pingable, PkiCaRocaConfirmed, PkiCaRocaSuspected, PkiCaWeakKeySize, PkiCaWeakRsaComponent, PkiCaWeakSignature, PkiEnrollmentHttpsRequired, Ports, RDPPorts, RDPSecurity, Replication, ReplicationStatus, RootDseAnonymousBind, RootKDS, SecurityComputers, SecurityDelegatedObjects, SecurityGroupsAccountOperators, SecurityGroupsSchemaAdmins, SecurityKRBGT, SecurityUsers, SecurityUsersAccountAdministrator, ServersGpoSmbSigningBaseline, Services, ServiceWINRM, SiteLinks, SiteLinksConnections, Sites, SMBProtocols, SMBShares, SMBSharesPermissions, StaleAdminAccountsManual, SysVOLDFSR, SysvolGpoConsistency, SysvolLegacyAdmFiles, SysvolNetlogonOwners, SysvolNetlogonPermissions, TimeSettings, TimeSynchronizationExternal, TimeSynchronizationInternal, TombstoneLifetime, TrustAzureAdSso, Trusts, UNCHardenedPaths, UsersAdminProtection, UsersBuiltInAdministrator, UsersGppStoredPasswords, UsersGuestAccount, UsersPasswordNeverExpires, UsersPrimaryGroupCompliance, UsersPrivilegedDelegationProtection, UsersPrivilegedEmailPresent, UsersPrivilegedInactivity, UsersStaleAccounts, UsersUnconstrainedDelegation, VurnerableSchemaClass, WellKnownFolders, WindowsFeaturesOptional, WindowsRemoteManagement, WindowsRolesAndFeatures, WindowsUpdates, WorkstationsGpoSmbSigningBaseline
Raw SwitchParameter optionalposition: namedpipeline: false
Writes data exactly as produced by the underlying rules, without shaping or aggregation.
Rule string[] optionalposition: namedpipeline: false
Rule names or display names to execute. Matching is case-insensitive against both canonical and display names.
Tag string[] optionalposition: namedpipeline: false
Filters discovery by free-form rule tags.
Throttle int optionalposition: namedpipeline: false
Limits concurrent rule execution. A value of 0 means no additional cmdlet-side cap is applied, subject to any license-enforced concurrency limit.
TimeoutSeconds int optionalposition: namedpipeline: false
Cancels the run after the specified number of seconds. A value of 0 disables the timeout.

Outputs

System.Object, TestimoX.Execution.RuleResultEnvelope, TestimoX.Execution.RuleSummaryRow