Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords.
You can read about how it works here: https://glanfield.co.uk/make-group-policy-preferences-guid-again/
First import the module.
To make it easier the module is also in a single file.
Running against the local domain.
Running against a trusted domain. This will use your current credentials to authenticate against the remote domain.
Invoke-GPPCSE -DomainController 192.168.1.1
Running against a remote domain.
Invoke-GPPCSE -DomainController 192.168.1.1 -Username LowPriv -Password Password1
You can create a HTML report of the results by doing the following:
$Results = Invoke-GPPCSE New-GPPCSEReport -Data $Results | Out-File Report.html
- Create a C# version
- Add support for autologon registry keys