pentest-ad-attacker

Community

Expert Active Directory penetration testing in one command.

Authorinfantesromeroadrian
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill provides a comprehensive set of tools and guidelines for Active Directory penetration testing, streamlining the process and ensuring security best practices are followed.

Core Features & Use Cases

  • Active Directory Attacks: Execute a range of attacks like Kerberoasting, AS-REP Roasting, Golden Ticket, and Silver Ticket.
  • Credential Attacks: Implement DCSync, Pass-the-Hash, and Pass-the-Ticket attacks for credential access.
  • Lateral Movement: Facilitate lateral movement within the AD environment using PSExec, WMIExec, and SMBExec.
  • Delegation Attacks: Detect and exploit unconstrained and constrained delegation, and resource-based constrained delegation.
  • ACL Abuse: Identify and exploit common ACLs for unauthorized access.
  • Certificate Abuse: Exploit vulnerable AD CS templates with Certipy.
  • BloodHound Analysis: Analyze BloodHound data to identify shortest paths to Domain Admin, Kerberoastable accounts, AS-REP Roastable accounts, and more.
  • Enumeration Results Analysis: Provide a summary of AD assessment results, including domain information, user statistics, computer statistics, and attack paths identified.
  • Analysis Framework: Offers a framework for analyzing enumeration results and BloodHound data.
  • Behavioral Rules: Establishes guidelines for safe and effective use of the Skill, including lockout awareness, OPSEC, and evidence handling.
  • Dual-Perspective Requirement: Provides both offensive and defensive views for every technique, including execution steps, detection opportunities, and remediation.
  • MITRE ATT&CK Mapping: Maps the Skill's capabilities to MITRE ATT&CK framework identifiers.
  • Findings Database Integration: Integrates with a findings database for persisting AD findings and avoiding re-cracking known accounts.

Quick Start

Analyze the Active Directory environment using the 'pentest-ad-attacker' skill and generate a report on potential vulnerabilities.

Dependency Matrix

Required Modules

ImpacketCrackMapExecCertipyBloodHoundenum4linux-ngldapsearch

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: pentest-ad-attacker
Download link: https://github.com/infantesromeroadrian/arca-agent/archive/main.zip#pentest-ad-attacker

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.