Active Directory Auditing and Enumeration

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound via BOFHound, and also supports full-object dumping to NDJSON.

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

https://lolad-project.github.io/

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Awesome Security lists for SOC/CERT/CTI

game of active directory

The ultimate WinRM shell for hacking/pentesting

Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.

Timeroasting scripts by Tom Tervoort

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

ScriptSentry finds misconfigured and dangerous logon scripts.

A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.

A BloodHound collector for Microsoft Configuration Manager

A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts

gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory environment.

Active Directory delegation management tool

Privilege Escalation Enumeration Script for Windows

Python3 script to quickly get various information from a domain controller through his LDAP service.