Login
Download
Skill UI
Browse and discover
10667+
curated skills
All
Development
Artificial Intelligence
Design & Creative
Product & Business
Data Science
Marketing
Soft Skills
Productivity
Engineering
Languages
Search
domain-escalation
, found
9
results
Default
Newest
Most Downloaded
Detect AD ACL Abuse and Misconfigurations
analyzing-active-directory-acl-abuse
mukul975/Anthropic-Cybersecurity-Skills
68
This skill analyzes Active Directory (AD) Access Control Lists (ACLs) to detect dangerous misconfigurations. It uses the ldap3 Python library to query domain controllers, parse security descriptors (SDDL), and identify instances where non-privileged users or groups are granted dangerous permissions like GenericAll, WriteDACL, or WriteOwner on sensitive objects. Essential for security incident response and privilege escalation path discovery.
View Details
Mapping Attack Paths with BloodHound CE
conducting-internal-reconnaissance-with-bloodhound-ce
mukul975/Anthropic-Cybersecurity-Skills
96
A comprehensive guide to conducting internal Active Directory reconnaissance using BloodHound Community Edition. This skill leverages graph theory to visualize hidden relationships, map shortest attack paths, and discover critical misconfigurations (like ACL weaknesses and Kerberoastable accounts) necessary for privilege escalation from low-privilege accounts to high-value targets like Domain Admins.
View Details
Exploiting AD CS For Privilege Escalation
exploiting-active-directory-certificate-services-esc1
mukul975/Anthropic-Cybersecurity-Skills
115
This guide details the exploitation of the Active Directory Certificate Services (AD CS) ESC1 vulnerability. By leveraging misconfigurations, an attacker can request certificates impersonating high-privileged users (e.g., Domain Admins). The workflow covers AD enumeration, forging certificates with arbitrary Subject Alternative Names (SANs), authenticating via PKINIT, and ultimately escalating domain privileges using tools like mimikatz. Essential for authorized red team and penetration testing.
View Details
Exploiting Active Directory With BloodHound
exploiting-active-directory-with-bloodhound
mukul975/Anthropic-Cybersecurity-Skills
390
BloodHound is a powerful, graph-based reconnaissance tool specifically designed for Active Directory environments. It utilizes graph theory to map deep, hidden relationships and potential attack paths—such as privilege escalation chains—from compromised low-value accounts to high-value targets like Domain Admins. This tool is essential for authorized red team exercises and penetration testing engagements.
View Details
Exploiting noPac for Domain Admin Escalation
exploiting-nopac-cve-2021-42278-42287
mukul975/Anthropic-Cybersecurity-Skills
216
This skill details exploiting the noPac vulnerability chain, combining CVE-2021-42278 (sAMAccountName spoofing) and CVE-2021-42287 (KDC PAC confusion). It allows an authenticated standard domain user to escalate privileges to Domain Admin, potentially compromising the entire domain. It is designed for authorized red team exercises and penetration testing against vulnerable Active Directory environments.
View Details
Exploiting Zerologon Vulnerability in Domain Controllers
exploiting-zerologon-vulnerability-cve-2020-1472
mukul975/Anthropic-Cybersecurity-Skills
450
This skill details the exploitation of the critical Zerologon vulnerability (CVE-2020-1472) found in the Microsoft Netlogon Remote Protocol. It allows an unauthenticated attacker to compromise a domain controller by resetting its machine account password. The guide covers the complete attack chain, including initial exploitation, credential dumping via DCSync, and subsequent privilege escalation in Active Directory environments. Used exclusively for authorized red teaming and security testing.
View Details
Active Directory BloodHound Attack Path Analysis
performing-active-directory-bloodhound-analysis
mukul975/Anthropic-Cybersecurity-Skills
490
BloodHound is an open-source reconnaissance tool that leverages graph theory to analyze Active Directory relationships. This guide details the process of collecting AD data using SharpHound and visualizing complex attack paths. It helps identify potential privilege escalation chains, trust abuses, and misconfigurations necessary for an attacker to move from a low-privilege user account to Domain Admin, making it essential for advanced red-teaming and security auditing.
View Details
NTLM Relay and Authentication Coercion Playbook
ntlm-relay-coercion
yaklang/hack-skills
390
An expert-level playbook detailing advanced techniques for NTLM relay and authentication coercion. Covers cross-protocol attacks targeting SMB, LDAP, HTTP, and MSSQL. Includes methods like LLMNR poisoning, PetitPotam, and advanced domain privilege escalation to bypass standard authentication controls.
View Details
Exploiting AD CS Certificate Misconfigurations
exploiting-adcs-with-certipy
mukul975/Anthropic-Cybersecurity-Skills
409
A powerful offensive security toolkit for red-teaming and penetration testing. It systematically enumerates and exploits various misconfigurations within Active Directory Certificate Services (AD CS) using Certipy. This allows attackers to forge privileged certificates, perform PKINIT authentication, and achieve domain compromise and privilege escalation, even without knowing user passwords. Ideal for validating security hardening.
View Details
1
Language
简体中文
English