FSProtect
  • Introduction
    • FSProtect - Active Directory Security Assessment
    • Glossary
    • Architecture
    • Requirements
    • Installation
    • Update
  • Scans
    • New Scan
    • Scans
    • Policies
  • Dashboard
  • Trend Insights
  • Issues
  • Impacts
  • Attack Surface
    • Forests
    • Domains
    • Computers
    • Users
    • Groups
    • GPOs
    • OUs
    • MSAs
    • GMSAs
    • Local Users
    • Local Groups
    • Certificate Authorities
    • Certificate Templates
    • CA Certificates
  • GPO Audit
    • GPO Comparison
    • RSoP Comparison
    • Custom Baselines
  • Integrations
    • CyberArk
    • Mail
    • Jira
  • Search & Reports
    • Domain
    • Computer
    • User
    • Group
    • GPO
    • OU
    • ManagedServiceAccount
    • GroupManagedServiceAccount
    • LocalUser
    • LocalGroup
    • CertificateAuthority
    • CertificateTemplate
    • CACertificate
    • SPN
    • SmbShare
  • Health Check
  • Visualize
  • Settings
    • User Settings
    • LDAP Authentication Settings
    • Roles and Permissions
    • Token Expiration Settings
  • Share Audit
    • Summary
    • Secrets
    • Settings
Powered by GitBook
On this page
  • Run On Graph
  • New Query
  • Example 1 - Create Query - Risky Groups with No Member
  • Example 2 - Create Query - Users with Group Delegated Admin Right on more than 1 Computer
  • Example 3 - Saving Query - Local Admin Accounts created in the last 1 month
  • Example 4 - Using Groups - Stealth Admins in forestall.labs or windomain.labs Domains
  • Saved Queries

Was this helpful?

Search & Reports

PreviousJiraNextDomain

Last updated 5 months ago

Was this helpful?

The Search & Reports page provides an Advanced Search interface to generate reports on Active Directory inventory with builtin and custom queries.

You can see object's attributes and descriptions with pages below.

Run On Graph

On the Search & Reports page, users can use the Run on Graph feature for both saved queries and newly created queries. This allows them to directly visualize the results in the Visualize page, offering a clear graphical representation of the data.

New Query

The New Query interface provides a query builder to create complex queries. You can create custom queries by using Object Type, Object Attributes, And/Or logics, and Groupings. You can also save these queries for later use.

Example 1 - Create Query - Risky Groups with No Member

Example 2 - Create Query - Users with Group Delegated Admin Right on more than 1 Computer

Example 3 - Saving Query - Local Admin Accounts created in the last 1 month

Example 4 - Using Groups - Stealth Admins in forestall.labs or windomain.labs Domains

Saved Queries

Saved Queries contains a list of various built-in queries and custom queries created by the user.

Domain
Computer
User
Group
GPO
OU
ManagedServiceAccount
GroupManagedServiceAccount
LocalUser
LocalGroup
CertificateAuthority
CertificateTemplate
CACertificate
SPN
SmbShare
Search & Reports
Saved Queries
New Query
Example 1
Example 2
Example 3
Example 4
Saved Queries