What is the primary purpose of the Active Directory Attacks skill?

This skill provides a structured framework for security professionals to conduct ethical penetration tests and security audits within Microsoft Active Directory environments.

Which tools are required to use this skill effectively?

The skill utilizes industry-standard security tools including BloodHound, Impacket, Mimikatz, Rubeus, CrackMapExec, and Responder.

Does this skill cover lateral movement and privilege escalation?

Yes, it includes detailed workflows for various techniques such as Pass-the-Hash, DCSync, and the forging of Kerberos Golden and Silver Tickets for domain dominance.

Is this skill helpful for remediating vulnerabilities?

While focused on the testing phase, by identifying specific vulnerabilities like misconfigured certificate templates (AD CS) or weak Kerberos pre-authentication, it provides the necessary data for targeted security hardening.

Active Directory Security Assessment

Name: Active Directory Security Assessment
Author: claudiodearaujo

byclaudiodearaujo

•

Security & Testing

Provides comprehensive workflows and technical guidance for professional Active Directory penetration testing and security auditing.

The Active Directory Security Assessment skill is a specialized resource for security professionals and red teams to evaluate the resilience of Microsoft Windows domain environments. It integrates industry-standard tools and techniques to perform deep reconnaissance, identify credential vulnerabilities, and simulate advanced lateral movement. From Kerberos-based attacks like Kerberoasting and AS-REP roasting to exploiting critical vulnerabilities such as ZeroLogon and PrintNightmare, this skill provides the technical framework necessary to uncover domain-level risks and harden enterprise infrastructure against modern threats.

Key Features

01Comprehensive domain enumeration and attack path visualization using BloodHound.

02Advanced Kerberos exploitation workflows including Golden and Silver Ticket generation.

03Credential harvesting techniques such as DCSync, Pass-the-Hash, and OverPass-the-Hash.

04Automated reconnaissance and vulnerability scanning for critical CVEs like ZeroLogon.

05Active Directory Certificate Services (AD CS) audit and exploitation templates.

061 GitHub stars

Use Cases

01Auditing Active Directory configurations for security hardening and regulatory compliance.

02Conducting red team simulations to test organizational detection and response capabilities.

03Executing authorized internal penetration tests to identify domain-level vulnerabilities.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro active-directory-attacks

For use in Claude.ai and ChatGPT

Download Skill