A simple set of PowerShell scripts to assist with Active Directory auditing, automations, Identity and Access Management, and more.
All of the scripts in this toolkit are written so they can be ran individually
-
$${\color{lightblue}Audit}$$ -
AD-PasswordNotRequiredAudit - Finds user accounts that do not require a password to #
-
AD-StaleAccountsAudit - Locates stale accounts in AD by looking for PasswordLastChanged and LastLogonTimestamp
-
AD-StaleAccountsAudit2 - Locates stale accounts in AD by using the Search-ADUser -AccountInactive command
-
AD-ExpiredPasswordsAudit - Provides a list of users with expired passwords
-
-
Forensics
- AD-PasswordChange-Initiated-Audit - Checks the last password change attempts for a user and displays the admin that initiated the change.
-
Incident Response
-
AD-BulkDisable.ps1 - Takes a list of users from a CSV and disables them
-
AD-BulkPasswordReset.ps1 - Takes a list of users from a CSV and changes their passwords (randomly generates a 10 character password for each)
-
-
Group Memberships
-
AD-GroupMembers-All - Provides a list of members for a specific group (includes all members)
-
AD-GroupMembers-Users - Provides a list of members for a specific group (users only)
-
AD-GroupMembers-Nested - Provides a list of members for a specifi group (nested groups only)
-
AD-RemoveUserGroupMemberships - Takes a list of users and removes their group memberships. Great for quick permissions cleanup on disabled users.
-
-
OU Memberships
- AD-GetOUMembersALL - Provies a list of members for a specific OU
-
Entra
-
ENTRA-GetUserLicenses - Provides a list of users and their assigned licenses from Entra
-
Entra-GetUserProxyAddresses - Shows all proxy addresses for a specific user
-
-
Other
- AD-AddMobilePhone - Fill out mobile phone information for a list of users (must have a CSV with the required information)