Which tools are supported by this skill?

The skill provides command syntax and workflows for industry-standard tools including Impacket, BloodHound, Mimikatz, Rubeus, and CrackMapExec.

What is the Active Directory Security Auditor skill?

It is a specialized capability for Claude Code designed to guide security professionals through the process of auditing and testing Microsoft Active Directory environments for common vulnerabilities.

Does this skill cover modern Active Directory vulnerabilities?

Yes, it includes guidance for assessing vulnerabilities like ZeroLogon, PrintNightmare, and AD CS (Certificate Services) misconfigurations.

Is this skill intended for defensive use?

Absolutely. By understanding the techniques used in Active Directory attacks, security administrators can better implement defensive controls, monitoring, and patch management to secure their networks.

Active Directory Security Auditor

Name: Active Directory Security Auditor
Author: claudiodearaujo

byclaudiodearaujo

0•

Security & Testing

Provides comprehensive guidance for evaluating and securing Microsoft Active Directory environments through authorized penetration testing techniques.

This skill serves as a high-level reference for security professionals and red teams to identify vulnerabilities within Microsoft Active Directory. It covers essential phases including reconnaissance with BloodHound, credential harvesting via Kerberoasting and AS-REP roasting, and advanced exploitation techniques like DCSync and Kerberos ticket forgery. By simulating these common attack vectors, organizations can better understand their security posture, validate defensive controls, and implement necessary mitigations against sophisticated domain-level threats in a controlled environment.

Key Features

01Active Directory Certificate Services (AD CS) misconfiguration identification and exploitation guidance.

02Comprehensive Kerberos-based attack simulations including Kerberoasting and ticket forgery.

03Automated Active Directory reconnaissance and path visualization using BloodHound and PowerView.

04Advanced credential extraction techniques like DCSync and NTLM relay for authorized testing.

05Vulnerability assessment workflows for critical CVEs like ZeroLogon and PrintNightmare.

060 GitHub stars

Use Cases

01Conducting security audits and penetration tests on Windows-based infrastructure.

02Executing authorized red team operations to test enterprise domain resilience.

03Educational research into complex Active Directory attack vectors and defensive mitigation strategies.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter active-directory-attacks

For use in Claude.ai and ChatGPT

Download Skill