The aggregated risk score
All information collected by the Active Directory ccan is aggregated into a score ranging from 0 to 100, available in the "Active Directory" tab of Stoïk Protect. The higher the score, the more the Active Directory configuration adheres to security best practices. The aggregated score takes the lowest score among the 4 security points analyzed by the Active Directory Scan:
- "Expired Objects": Expired objects encompass everything related to AD objects and their lifecycle, including the creation of computers and users, delegation.
- "Trusts": These are links between Active Directories (reminder: one AD can compromise another through trusts).
- "Privileged Accounts": This pertains to everything related to administrator accounts.
- "Anomalies."
Detected vulnerabilities
The various misconfigured rules found and their level of criticality, classified from low to critical, are displayed in the "Active Directory" tab of Stoïk Protect. Click on a vulnerability for more details on its impact and how to correct it.
Vulnerabilities can be viewed through 3 tabs:
- Compromise Paths: This tab provides a view of potential entry points at risk, such as compromising a domain machine, a domain account, or the AD.
- Cyber Projects: This tab categorizes vulnerabilities by theme, including access control, authentication, networks, privileged account management, and updates.
- List: This tab lists all vulnerabilities.