User Hunting
Find local admin access on machines for current user
Find-LocalAdminAccess -VerboseTHIS IS VERY NOISY DUE TO THE HIGH LOGIN AND LOGOFF LOG TRAFFIC
Run it in batches of machines instead of all the machines at once
. .\Find-PSRemotingLocalAdminAccess.ps1
Find-PSRemotingLocalAdminAccess.ps1Find domain admin sessions (SessionHunter)
Invoke-SessionHunter -FailSafeOPSEC OPTION
Invoke-SessionHunter -NoPortScan -Targets C:\AD\Tools\servers.txtPowerView option
Find-DomainUserLocation -Verbose
Find-DomainUserLocation -CheckAccess
Find-DomainUserLocation -UserGroupIdentity "RDPUsers"Last updated