netwrix
diff --git a/‎ADWS/ADItem.cs
Lines changed: 2 additions & 0 deletions b/‎ADWS/ADItem.cs
Lines changed: 2 additions & 0 deletions
diff --git a/‎ADWS/ADWSConnection.cs
Lines changed: 13 additions & 4 deletions b/‎ADWS/ADWSConnection.cs
Lines changed: 13 additions & 4 deletions
diff --git a/‎ADWS/LDAPConnection.cs
Lines changed: 13 additions & 3 deletions b/‎ADWS/LDAPConnection.cs
Lines changed: 13 additions & 3 deletions
diff --git a/‎Data/HealthcheckData.cs
Lines changed: 35 additions & 2 deletions b/‎Data/HealthcheckData.cs
Lines changed: 35 additions & 2 deletions
diff --git a/‎Exports/ExportComputers.cs
Lines changed: 24 additions & 3 deletions b/‎Exports/ExportComputers.cs
Lines changed: 24 additions & 3 deletions
diff --git a/‎Exports/ExportUsers.cs
Lines changed: 5 additions & 1 deletion b/‎Exports/ExportUsers.cs
Lines changed: 5 additions & 1 deletion
diff --git a/‎Graph/Reporting/ReportGenerator.cs
Lines changed: 1 addition & 0 deletions b/‎Graph/Reporting/ReportGenerator.cs
Lines changed: 1 addition & 0 deletions
@@ -161,6 +161,8 @@ static ADItem()
         public string[] Keywords { get; set; }
         [ADAttributeAttribute("gPLink", ADAttributeValueKind.StringValue)]
         public string GPLink { get; set; }
+        [ADAttributeAttribute("lastLogon", ADAttributeValueKind.DateValue)]
+        public DateTime LastLogon { get; set; }
         [ADAttributeAttribute("lastLogonTimestamp", ADAttributeValueKind.DateValue)]
         public DateTime LastLogonTimestamp { get; set; }
         [ADAttributeAttribute("lDAPDisplayName", ADAttributeValueKind.StringValue)]
 
@@ -239,11 +239,20 @@ public override void Enumerate(string distinguishedName, string filter, string[]
 							{
 								Console.WriteLine("Warning: unable to process element (" + ex.Message + ")\r\n" + item.OuterXml);
 								Trace.WriteLine("Warning: unable to process element\r\n" + item.OuterXml);
-								Trace.WriteLine("Exception: " + ex.Message);
-								Trace.WriteLine(ex.StackTrace);
+								Trace.WriteLine("Exception: " + ex.ToString());
 							}
-							if (aditem != null)
-								callback(aditem);
+                            if (aditem != null)
+                            {
+                                try
+                                {
+                                    callback(aditem);
+                                }
+                                catch
+                                {
+                                    Trace.WriteLine("Exception while working on " + aditem.DistinguishedName);
+                                    throw;
+                                }
+                            }
 						}
 					}
 				}
 
@@ -119,11 +119,21 @@ private void EnumerateInternalWithLDAP(string distinguishedName, string filter,
                     {
                         Console.WriteLine("Warning: unable to process element (" + ex.Message + ")\r\n" + sr.Path);
                         Trace.WriteLine("Warning: unable to process element\r\n" + sr.Path);
-                        Trace.WriteLine("Exception: " + ex.Message);
-                        Trace.WriteLine(ex.StackTrace);
+                        Trace.WriteLine("Exception: " + ex.ToString());
                     }
+
                     if (aditem != null)
-                        callback(aditem);
+                    {
+                        try
+                        {
+                            callback(aditem);
+                        }
+                        catch
+                        {
+                            Trace.WriteLine("Exception while working on " + aditem.DistinguishedName);
+                            throw;
+                        }
+                    }
                     numberOfObjectAlreadyExtracted++;
                 }
                 Trace.WriteLine("[" + DateTime.Now.ToLongTimeString() + "]Enumeration successful");
 
@@ -202,6 +202,8 @@ public class HealthCheckGroupMemberData
         public bool IsInProtectedUser { get; set; }
 
         public string Email { get; set; }
+
+        public string Class { get; set; }
     }
 
     [DebuggerDisplay("{GroupName}")]
@@ -811,7 +813,7 @@ public HealthcheckOSVersionData()
         public HealthcheckOSVersionData(PingCastle.ADWS.ADItem x)
         {
             IsServer = x.OperatingSystem.Contains("Server");
-            IsLTSC = x.OperatingSystem.Contains("LTSC") || x.OperatingSystem.Contains("LTSB");
+            IsLTSC = x.OperatingSystem.IndexOf("LTSC", StringComparison.OrdinalIgnoreCase) >= 0 || x.OperatingSystem.IndexOf("LTSB", StringComparison.OrdinalIgnoreCase) >= 0;
             OSVersion = x.OperatingSystemVersion;
             data = new HealthcheckAccountData();
             data.DotNotRecordDetail = true;
@@ -1006,6 +1008,22 @@ public enum SMBSecurityModeEnum
         SmbSigningRequired = 4,
     }
 
+    [DebuggerDisplay("{DCName}")]
+    public class HealthcheckDCRPCInterface
+    {
+        [XmlAttribute]
+        public string IP { get; set; }
+
+        [XmlAttribute]
+        public string Interface { get; set; }
+        
+        [XmlAttribute]
+        public int OpNum { get; set; }
+
+        [XmlAttribute]
+        public string Function { get; set; }
+    }
+
     [DebuggerDisplay("{DCName}")]
     public class HealthcheckDomainController
     {
@@ -1079,6 +1097,11 @@ public class HealthcheckDomainController
         [XmlAttribute]
         [DefaultValue(false)]
         public bool WebClientEnabled { get; set; }
+
+        [XmlAttribute]
+        public DateTime AdminLocalLogin { get; set; }
+
+        public List<HealthcheckDCRPCInterface> RPCInterfacesOpen { get; set; }
     }
 
     [XmlType("delegation")]
@@ -1165,10 +1188,20 @@ public static void UseDateInFileName()
 
         public string GetHumanReadableFileName()
         {
-            return "ad_hc_" + DomainFQDN + (UseDateInFileNameValue ? "_" + GenerationDate.ToString("yyyyMMddTHHmmss") : null) + ".html";
+            return GetHumanReadableFileName(DomainFQDN, GenerationDate);
         }
 
         public string GetMachineReadableFileName()
+        {
+            return GetMachineReadableFileName(DomainFQDN, GenerationDate);
+        }
+
+        public static string GetHumanReadableFileName(string DomainFQDN, DateTime GenerationDate)
+        {
+            return "ad_hc_" + DomainFQDN + (UseDateInFileNameValue ? "_" + GenerationDate.ToString("yyyyMMddTHHmmss") : null) + ".html";
+        }
+
+        public static string GetMachineReadableFileName(string DomainFQDN, DateTime GenerationDate)
         {
             return "ad_hc_" + DomainFQDN + (UseDateInFileNameValue ? "_" + GenerationDate.ToString("yyyyMMddTHHmmss") : null) + ".xml";
         }
 
@@ -47,14 +47,15 @@ public override void Export(string filename)
                     header.AddRange(hcprop);
                     header.Add("OperatingSystem");
                     header.Add("OperatingSystemVersion");
+                    header.Add("IsCluster");
                     header.Add("PC OS 1");
                     header.Add("PC OS 2");
                     header.Add("LAPS last update (legacy LAPS)");
                     header.Add("LAPS last update (Ms LAPS)");
-                    
+
                     sw.WriteLine(string.Join("\t", header.ToArray()));
-                    
-                    
+
+
                     WorkOnReturnedObjectByADWS callback =
                         (ADItem x) =>
                         {
@@ -100,6 +101,26 @@ public override void Export(string filename)
                                 data.Add(string.Empty);
                                 data.Add(string.Empty);
                             }
+                            if (x.ServicePrincipalName != null)
+                            {
+                                bool isCluster = false;
+                                if (x.ServicePrincipalName != null)
+                                {
+                                    foreach (var sp in x.ServicePrincipalName)
+                                    {
+                                        if (sp.StartsWith("MSClusterVirtualServer/"))
+                                        {
+                                            isCluster = true;
+                                            break;
+                                        }
+                                    }
+                                }
+                                data.Add(isCluster.ToString());
+                            }
+                            else
+                            {
+                                data.Add(false.ToString());
+                            }
                             if (lapsAnalyzer.LegacyLAPSIntId != 0 && x.ReplPropertyMetaData != null && x.ReplPropertyMetaData.ContainsKey(lapsAnalyzer.LegacyLAPSIntId))
                             {
                                 var dd = x.ReplPropertyMetaData[lapsAnalyzer.LegacyLAPSIntId];
 
@@ -40,6 +40,7 @@ public override void Export(string filename)
                     header.Add("lastLogonTimestamp");
                     header.Add("pwdLastSet");
                     header.Add("whenCreated");
+                    header.Add("whenChanged");
                     header.Add("objectClass");
                     header.Add("userAccountControl");
                     header.AddRange(hcprop);
@@ -66,6 +67,7 @@ public override void Export(string filename)
                             data.Add(x.LastLogonTimestamp.ToString("u"));
                             data.Add(x.PwdLastSet.ToString("u"));
                             data.Add(x.WhenCreated.ToString("u"));
+                            data.Add(x.WhenChanged.ToString("u"));
                             data.Add(x.Class);
                             data.Add(x.UserAccountControl.ToString());
                             foreach (var p in hcprop)
@@ -77,7 +79,9 @@ public override void Export(string filename)
                         };
 
                     DisplayAdvancement("Starting");
-                    adws.Enumerate(domainInfo.DefaultNamingContext, HealthcheckAnalyzer.userFilter, HealthcheckAnalyzer.userProperties, callback, "SubTree");
+                    var properties = new List<string>(HealthcheckAnalyzer.userProperties);
+                    properties.Add("whenChanged");
+                    adws.Enumerate(domainInfo.DefaultNamingContext, HealthcheckAnalyzer.userFilter, properties.ToArray(), callback, "SubTree");
                     DisplayAdvancement("Done");
                 }
             }
 
@@ -585,6 +585,7 @@ private HealthCheckGroupMemberData BuildMemberDetail(ADWebService adws, HealthCh
                 member.PwdLastSet = x.PwdLastSet;
                 member.LastLogonTimestamp = x.LastLogonTimestamp;
                 member.Email = x.Mail;
+                member.Class = x.Class;
 
                 if ((x.UserAccountControl & 0x00000002) != 0)
                     data.NumberOfMemberDisabled++;
Original file line number	Diff line number	Diff line change
`@@ -239,11 +239,20 @@ public override void Enumerate(string distinguishedName, string filter, string[]`
`239`	`239`	`{`
`240`	`240`	`Console.WriteLine("Warning: unable to process element (" + ex.Message + ")\r\n" + item.OuterXml);`
`241`	`241`	`Trace.WriteLine("Warning: unable to process element\r\n" + item.OuterXml);`
`242`		`- Trace.WriteLine("Exception: " + ex.Message);`
`243`		`- Trace.WriteLine(ex.StackTrace);`
	`242`	`+ Trace.WriteLine("Exception: " + ex.ToString());`
`244`	`243`	`}`
`245`		`- if (aditem != null)`
`246`		`- callback(aditem);`
	`244`	`+ if (aditem != null)`
	`245`	`+ {`
	`246`	`+ try`
	`247`	`+ {`
	`248`	`+ callback(aditem);`
	`249`	`+ }`
	`250`	`+ catch`
	`251`	`+ {`
	`252`	`+ Trace.WriteLine("Exception while working on " + aditem.DistinguishedName);`
	`253`	`+ throw;`
	`254`	`+ }`
	`255`	`+ }`
`247`	`256`	`}`
`248`	`257`	`}`
`249`	`258`	`}`