iT邦幫忙

2018 iT 邦幫忙鐵人賽
DAY 27
0
Security

從接電話解任務開始到進入資安領域邊邊系列 第 27

接電話解任務(27/30): Active Directory utilities

  • 分享至 

  • xImage
  •  

Active Directory utilities
微軟家的免費工具

AdExplorer

Active Directory Explorer (AD Explorer) is an advanced Active Directory (AD) viewer and editor. You can use AD Explorer to easily navigate an AD database, define favorite locations, view object properties and attributes without having to open dialog boxes, edit permissions, view an object's schema, and execute sophisticated searches that you can save and re-execute.
AD Explorer also includes the ability to save snapshots of an AD database for off-line viewing and comparisons. When you load a saved snapshot, you can navigate and explore it as you would a live database. If you have two snapshots of an AD database you can use AD Explorer's comparison functionality to see what objects, attributes and security permissions changed between them.
載點https://docs.microsoft.com/en-us/sysinternals/downloads/adexplorer

AdInsight

ADInsight is an LDAP (Light-weight Directory Access Protocol) real-time monitoring tool aimed at troubleshooting Active Directory client applications. Use its detailed tracing of Active Directory client-server communications to solve Windows authentication, Exchange, DNS, and other problems.
ADInsight uses DLL injection techniques to intercept calls that applications make in the Wldap32.dll library, which is the standard library underlying Active Directory APIs such ldap and ADSI. Unlike network monitoring tools, ADInsight intercepts and interprets all client-side APIs, including those that do not result in transmission to a server. ADInsight monitors any process into which it can load it’s tracing DLL, which means that it does not require administrative permissions, however, if run with administrative rights, it will also monitor system processes, including windows services.
載點https://docs.microsoft.com/en-us/sysinternals/downloads/adinsight

AdRestore

Windows Server 2003 introduces the ability to restore deleted ("tombstoned") objects. This simple command-line utility enumerates the deleted objects in a domain and gives you the option of restoring each one. Source code is based on sample code in the Microsoft Platform SDK. This MS KB article describes the use of AdRestore:http://support.microsoft.com/?kbid=840001
載點https://docs.microsoft.com/en-us/sysinternals/downloads/adrestore


上一篇
接電話解任務(26/30): 執行程序和診斷工具Process and diagnostic utilities
下一篇
接電話解任務(28/30): Desktop utilities
系列文
從接電話解任務開始到進入資安領域邊邊32
圖片
  直播研討會
圖片
{{ item.channelVendor }} {{ item.webinarstarted }} |
{{ formatDate(item.duration) }}
直播中

尚未有邦友留言

立即登入留言