Skip to content
/ ZeroLogonAssess Public

Patch and enforcement key assessment for CVE 2020-1472

License

MIT license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

technion/ZeroLogonAssess

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ZeroLogonAssess.ps1
ZeroLogonAssess.ps1
 
 

Repository files navigation

ZeroLogonAssess

Patch and enforcement key assessment for CVE 2020-1472

Script will:

  • Detect all Domain Controllers
  • Scan for relevant installed updated
  • Check for enforcement registry keys

This is loosely based on CISA Validation script. Unfortunately whilst attempting to fix bugged output I came to the view that the existing code's workflow of appending to a csv file and reading it back just needed to be rewritten.

In the process I added a scan for the enforcement key.

Note the nature of cumulative updates means the list of patches will soon be out of date.

Use

PS C:\Users\administrator\Downloads> .\ZeroLogonAccess.ps1
Zerologon validation of domain at 09/25/2020 13:14:11
Evaluating Domain Controller: dc1.ad.domain.com
Evaluating Domain Controller: dc2.ad.domain.com

DomainController             OperatingSystem                          Update    Compliance Enforcement
----------------             ---------------                          ------    ---------- ----------
dc1.ad.domain.com            Microsoft Windows Server 2016 Datacenter KB4571694       True        True
dc2.ad.domain.com            Microsoft Windows Server 2016 Datacenter KB4571694       True        True

About

Patch and enforcement key assessment for CVE 2020-1472

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages