Which security tools does this skill integrate with?

The skill provides command references and workflows for industry-standard tools including Impacket, Mimikatz, BloodHound, Rubeus, and CrackMapExec.

Can this skill be used for defensive purposes?

Absolutely. Understanding these attack vectors is essential for blue teams and system administrators to implement proper hardening, monitoring, and mitigation strategies.

Does this skill cover modern AD vulnerabilities?

Yes, it includes specific procedures for testing and exploiting critical CVEs such as ZeroLogon (CVE-2020-1472) and PrintNightmare (CVE-2021-1675).

Does the skill include guidance for Certificate Services?

Yes, it covers Active Directory Certificate Services (AD CS) attacks, specifically targeting misconfigured templates (ESC1) and web enrollment relay (ESC8).

What is the primary purpose of this Active Directory skill?

It serves as a comprehensive technical reference for security professionals to conduct authorized penetration testing and security audits of Microsoft Active Directory environments.

Active Directory Attack & Security Testing

Name: Active Directory Attack & Security Testing
Author: claudiodearaujo

byclaudiodearaujo

0•

セキュリティとテスト

Provides a comprehensive suite of techniques and command references for auditing and testing Microsoft Active Directory environments.

The Active Directory Attacks skill equips security professionals and red teams with a standardized set of procedures for identifying vulnerabilities within Windows domain environments. It covers the full lifecycle of a security engagement, from initial reconnaissance and path visualization using BloodHound to advanced credential harvesting and Kerberos-based attacks. By providing clear workflows for techniques like Kerberoasting, DCSync, and NTLM relaying, this skill enables practitioners to perform thorough security assessments, validate patch levels against critical CVEs, and identify misconfigurations that could lead to domain compromise.

主な機能

01Detailed implementation guides for Kerberos attacks including Kerberoasting and AS-REP Roasting

02Step-by-step guidance for NTLM relaying and Active Directory Certificate Services (AD CS) attacks

03Comprehensive AD reconnaissance and visualization workflows using BloodHound and PowerView

04Advanced credential extraction techniques such as DCSync and Pass-the-Hash

05Exploitation procedures for critical vulnerabilities like ZeroLogon and PrintNightmare

060 GitHub stars

ユースケース

01Auditing Active Directory configurations for privilege escalation risks and misconfigured service templates

02Conducting red team exercises to evaluate organizational detection and response capabilities

03Executing professional penetration tests to identify lateral movement paths in corporate networks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter active-directory-attacks

For use in Claude.ai and ChatGPT

Download Skill