Can I use this skill with Claude Code?

Yes, it is specifically formatted as a Claude Code Skill to provide domain-specific guidance and implementation patterns for cybersecurity tasks.

Is this skill useful for defensive security teams?

Absolutely. Blue teams use this skill to identify and remediate misconfigurations and privilege escalation paths before they can be exploited by attackers.

What is the main purpose of the BloodHound skill?

It provides domain-specific guidance for performing graph-based reconnaissance in Active Directory to find hidden attack paths to high-value targets like Domain Admins.

Which security frameworks are covered?

The skill is mapped to MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, and NIST AI RMF.

Does this skill help with data collection?

Yes, it includes workflows for using collectors like SharpHound and BloodHound.py to gather AD objects, ACLs, and session data.

Active Directory Exploitation with BloodHound

Name: Active Directory Exploitation with BloodHound
Author: mukul975

bymukul975

•

4,121

•

보안 및 테스팅

Identifies and analyzes complex attack paths within Active Directory environments using graph-based reconnaissance and relationship mapping.

This skill empowers AI agents to perform sophisticated Active Directory reconnaissance by leveraging BloodHound's graph theory capabilities. It provides structured guidance for collecting environment data via SharpHound, visualizing hidden relationships between AD objects, and uncovering unintended privilege escalation paths to high-value targets like Domain Admins. Designed for red teamers and security auditors, it streamlines the process of identifying misconfigured ACLs, Kerberoasting opportunities, and GPO abuse vectors while ensuring alignment with the MITRE ATT&CK framework.

주요 기능

01Step-by-step workflows for SharpHound and BloodHound.py data collection

02Identification of Kerberoasting, AS-REP roasting, and delegation abuses

03Mapping of complex ACL-based privilege escalation chains (GenericAll, WriteDACL)

044,121 GitHub stars

05Comprehensive integration with MITRE ATT&CK and NIST CSF security frameworks

06Advanced graph-based analysis of AD attack paths and hidden relationships

사용 사례

01Conducting authorized red team engagements and internal penetration tests

02Auditing Active Directory environments to identify and remediate misconfigurations

03Building and validating defensive detection signatures for AD-based attacks

주요 기능

01Step-by-step workflows for SharpHound and BloodHound.py data collection

02Identification of Kerberoasting, AS-REP roasting, and delegation abuses

03Mapping of complex ACL-based privilege escalation chains (GenericAll, WriteDACL)

044,121 GitHub stars

05Comprehensive integration with MITRE ATT&CK and NIST CSF security frameworks

06Advanced graph-based analysis of AD attack paths and hidden relationships

사용 사례

01Conducting authorized red team engagements and internal penetration tests

02Auditing Active Directory environments to identify and remediate misconfigurations

03Building and validating defensive detection signatures for AD-based attacks