The report can be generated in the interactive mode by choosing “scanner” or just by pressing Enter. Then the list of available scanner is displayed.
As an alternative, the scanner can be run using the command:
PingCastle.exe –scanner <type> –server mydomain.com
There is 6 available scanners.
This module enumerates the local admin accounts on the workstations and servers of the domain.
Scan for the famous wannacry vulnerability.
It should trigger an antivirus alert. Please note that the vulnerability is not exploited at all.
Check for replication USN consistency.
Scan for local share and indicates if the share can be read by anyone.
Check for the version of the protocol SMB (used for file share) available.
The SMB signing status is indicagted.
Check for the computer startup date.