How does it help with Kerberos security?

It provides specific checks for Kerberoasting, AS-REP roasting, and delegation issues (unconstrained/constrained/RBCD) to secure identity tokens.

Does this skill require Domain Admin privileges?

While some scanning tasks require domain-joined access, advanced collection and reporting often require Domain Admin or equivalent read permissions for comprehensive results.

Can it help with remediation?

Yes, the skill includes a prioritized remediation framework for common findings like Kerberoasting, stale accounts, and unconstrained delegation.

Is this skill compatible with BloodHound Community Edition?

Yes, it includes specific instructions for deploying and interacting with BloodHound Community Edition via Docker and APIs.

Which tools are supported by this skill?

This skill provides guidance and implementation patterns for PingCastle, BloodHound (including SharpHound), and Purple Knight.

Active Directory Vulnerability Assessment

Name: Active Directory Vulnerability Assessment
Author: mukul975

bymukul975

•

4,120

•

Security & Testing

Analyzes Active Directory security posture using industry-standard tools to identify misconfigurations and privilege escalation paths.

This skill enables Claude to guide security professionals through comprehensive Active Directory (AD) assessments using specialized tools like PingCastle, BloodHound, and Purple Knight. It provides actionable patterns for health checks, attack path visualization, and security scoring, helping to uncover critical risks such as Kerberoasting, AS-REP roasting, and excessive administrative privileges. Whether performing scheduled audits or investigating potential compromises, this skill streamlines the identification of lateral movement opportunities and offers prioritized remediation strategies to harden identity infrastructure.

Key Features

01BloodHound/SharpHound attack path data collection and Cypher query analysis

02Identification of Kerberos vulnerabilities like Kerberoasting and AS-REP roasting

034,120 GitHub stars

04Purple Knight security posture scoring across 130+ indicators

05Prioritized remediation guidance for stale accounts and GPO misconfigurations

06Automated PingCastle health check execution and report analysis

Use Cases

01Conducting quarterly security audits of enterprise identity infrastructure

02Identifying and mapping lateral movement paths during a red team engagement

03Validating security control effectiveness following AD environment hardening

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-active-directory-vulnerability-assessment

For use in Claude.ai and ChatGPT

Key Features

01BloodHound/SharpHound attack path data collection and Cypher query analysis

02Identification of Kerberos vulnerabilities like Kerberoasting and AS-REP roasting

034,120 GitHub stars

04Purple Knight security posture scoring across 130+ indicators

05Prioritized remediation guidance for stale accounts and GPO misconfigurations

06Automated PingCastle health check execution and report analysis

Use Cases

01Conducting quarterly security audits of enterprise identity infrastructure

02Identifying and mapping lateral movement paths during a red team engagement

03Validating security control effectiveness following AD environment hardening

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-active-directory-vulnerability-assessment

For use in Claude.ai and ChatGPT