How does this skill handle Kerberos time synchronization?

The skill includes specific commands for detecting and fixing clock skew between the attack platform and the Domain Controller, which is a common prerequisite for successful Kerberos-based attacks.

Which tools are required to use this skill?

Users should have access to a security-focused platform like Kali Linux and standard industry tools including Impacket, BloodHound, Mimikatz, Rubeus, and CrackMapExec.

What is the primary purpose of the Active Directory Attack skill?

The skill provides a structured framework and command reference for security professionals to audit and test Active Directory environments for common vulnerabilities and attack paths.

Is this skill suitable for educational purposes?

Absolutely. It serves as a detailed reference for students and junior security analysts to learn the workflows and toolsets used in professional domain environment assessments.

Does this skill cover modern AD vulnerabilities?

Yes, it includes exploitation and check procedures for critical CVEs such as ZeroLogon, PrintNightmare, and various Active Directory Certificate Services (AD CS) attacks.

Active Directory Attack & Audit

Name: Active Directory Attack & Audit
Author: claudiodearaujo

byclaudiodearaujo

•

Security & Testing

Facilitates comprehensive security assessments and penetration testing of Microsoft Active Directory environments through guided reconnaissance and exploitation workflows.

This skill provides security professionals and red teams with a structured methodology for evaluating the resilience of Microsoft Active Directory environments. It covers the entire attack lifecycle, from initial reconnaissance and attack path visualization with BloodHound to advanced credential harvesting techniques like Kerberoasting, DCSync, and AS-REP roasting. By integrating industry-standard tools such as Impacket, Mimikatz, and Rubeus, this skill helps identify critical misconfigurations and vulnerabilities like ZeroLogon or PrintNightmare, enabling organizations to proactively harden their domain infrastructure against sophisticated threats.

Key Features

01Credential harvesting and extraction techniques using Impacket, Mimikatz, and Responder.

021 GitHub stars

03Guided Kerberos attack workflows including Kerberoasting, AS-REP roasting, and ticket forging.

04Lateral movement and privilege escalation strategies for comprehensive domain security auditing.

05Automated AD reconnaissance and attack path visualization using BloodHound and SharpHound.

06Step-by-step exploitation guides for critical vulnerabilities like ZeroLogon, PrintNightmare, and ESC1.

Use Cases

01Conducting internal network penetration tests to identify Active Directory vulnerabilities.

02Executing red team simulations to test organizational detection and response capabilities.

03Performing security audits on Windows domain configurations to prevent credential theft and lateral movement.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro active-directory-attacks

For use in Claude.ai and ChatGPT

Download Skill