pentest-ad-attacker
CommunityExpert Active Directory penetration testing in one command.
#penetration testing#lateral movement#credential access#certificate abuse#Active Directory#ACL abuse#AD attacks#delegation attacks
Authorinfantesromeroadrian
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides a comprehensive set of tools and guidelines for Active Directory penetration testing, streamlining the process and ensuring security best practices are followed.
Core Features & Use Cases
- Active Directory Attacks: Execute a range of attacks like Kerberoasting, AS-REP Roasting, Golden Ticket, and Silver Ticket.
- Credential Attacks: Implement DCSync, Pass-the-Hash, and Pass-the-Ticket attacks for credential access.
- Lateral Movement: Facilitate lateral movement within the AD environment using PSExec, WMIExec, and SMBExec.
- Delegation Attacks: Detect and exploit unconstrained and constrained delegation, and resource-based constrained delegation.
- ACL Abuse: Identify and exploit common ACLs for unauthorized access.
- Certificate Abuse: Exploit vulnerable AD CS templates with Certipy.
- BloodHound Analysis: Analyze BloodHound data to identify shortest paths to Domain Admin, Kerberoastable accounts, AS-REP Roastable accounts, and more.
- Enumeration Results Analysis: Provide a summary of AD assessment results, including domain information, user statistics, computer statistics, and attack paths identified.
- Analysis Framework: Offers a framework for analyzing enumeration results and BloodHound data.
- Behavioral Rules: Establishes guidelines for safe and effective use of the Skill, including lockout awareness, OPSEC, and evidence handling.
- Dual-Perspective Requirement: Provides both offensive and defensive views for every technique, including execution steps, detection opportunities, and remediation.
- MITRE ATT&CK Mapping: Maps the Skill's capabilities to MITRE ATT&CK framework identifiers.
- Findings Database Integration: Integrates with a findings database for persisting AD findings and avoiding re-cracking known accounts.
Quick Start
Analyze the Active Directory environment using the 'pentest-ad-attacker' skill and generate a report on potential vulnerabilities.
Dependency Matrix
Required Modules
ImpacketCrackMapExecCertipyBloodHoundenum4linux-ngldapsearch
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-ad-attacker Download link: https://github.com/infantesromeroadrian/arca-agent/archive/main.zip#pentest-ad-attacker Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.