Skill UI

This skill systematically enumerates and audits Active Directory forest trust relationships using advanced techniques like SID filtering analysis, detecting SID history abuse, and assessing inter-realm Kerberos ticket configurations. It is designed for red-teaming and security auditing to identify potential lateral movement paths and trust vulnerabilities across organizational boundaries.

Conducts a comprehensive Active Directory penetration test, covering domain enumeration, misconfiguration discovery, and attack path analysis using BloodHound. Techniques include exploiting Kerberos weaknesses (Kerberoasting, AS-REP Roasting) and escalating privileges via DCSync and constrained delegation, culminating in domain compromise demonstration.

This skill guides comprehensive Active Directory (AD) security assessment using industry-standard tools like PingCastle, BloodHound, and Purple Knight. It helps identify critical misconfigurations, excessive privileges, weak Kerberos settings, and potential lateral movement paths. Ideal for penetration testing, security audits, and incident response to proactively secure enterprise identity management systems.

Comprehensive reference for red teamers and penetration testers on executing Active Directory attacks, covering reconnaissance, credential harvesting, Kerberos abuses, lateral movement, and domain persistence techniques against Windows domains.

A comprehensive guide covering advanced Kerberos attacks against Active Directory environments. Techniques include AS-REP roasting, Kerberoasting, forging golden, silver, diamond, and sapphire tickets, and exploiting delegation abuse. Designed for penetration testers and red teams to simulate sophisticated domain compromise scenarios.

A comprehensive playbook detailing expert techniques for lateral movement across Windows networks. It covers various protocols and methods for pivoting between compromised hosts, including PsExec, WMI, WinRM, DCOM, SMB, RDP, and advanced credential techniques like Pass-the-Hash (PTH) and Pass-the-Ticket (PTT).