What is the primary focus of the Active Directory Attacks skill?

It focuses on providing standardized commands and workflows for security professionals to test and secure Microsoft Active Directory environments through authorized penetration testing.

Which tools are supported by this skill?

The skill provides syntax and usage for major security tools including BloodHound, Impacket, Mimikatz, Rubeus, CrackMapExec, and PowerView.

Is this skill suitable for defensive security teams?

Absolutely. By understanding the attack vectors documented, Blue Teams can better configure detections and implement hardening strategies like SMB signing and patching.

What are the prerequisites for using these techniques?

Users typically need an attack platform like Kali Linux, network access to a Domain Controller, and often valid domain user credentials to begin enumeration.

Does this skill cover recent vulnerabilities?

Yes, it includes guidance for exploiting and testing critical CVEs such as ZeroLogon (CVE-2020-1472), PrintNightmare, and samAccountName spoofing.

Active Directory Attack & Pentesting

Name: Active Directory Attack & Pentesting
Author: claudiodearaujo

byclaudiodearaujo

•

Security & Testing

Provides comprehensive workflows and tool commands for identifying vulnerabilities and executing advanced penetration testing techniques in Microsoft Active Directory environments.

This skill equips security professionals and red teams with a centralized repository of techniques for evaluating Microsoft Active Directory security. It covers the entire attack lifecycle, from initial reconnaissance and domain enumeration using BloodHound and PowerView to advanced credential attacks like Kerberoasting, AS-REP roasting, and DCSync. Designed for authorized penetration testing, it includes guidance on lateral movement, privilege escalation, and exploiting critical CVEs to help organizations identify and remediate complex domain-level vulnerabilities.

Key Features

01Standardized command syntax for Impacket, Mimikatz, BloodHound, and Rubeus.

02Credential harvesting techniques like Password Spraying, DCSync, and Pass-the-Hash.

03Exploitation walkthroughs for critical vulnerabilities like ZeroLogon and PrintNightmare.

04Comprehensive Active Directory reconnaissance and domain enumeration workflows.

05Detailed guides for Kerberos-based attacks including Kerberoasting and Golden/Silver tickets.

061 GitHub stars

Use Cases

01Validating the effectiveness of internal security controls and monitoring systems against lateral movement.

02Performing security audits to identify misconfigured AD objects and vulnerable Kerberos settings.

03Conducting authorized red team operations to simulate real-world domain compromises.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro active-directory-attacks

For use in Claude.ai and ChatGPT

Download Skill