sabrinalupsan/pentesting-active-directory external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sabrinalupsan/pentesting-active-directory

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sabrinalupsan/pentesting-active-directory)

Close

sabrinalupsan / pentesting-active-directoryView on GitHubMore

• External links
• Readme badge

A cheatsheet of tools and commands that I use to pentest Active Directory.

☆52Mar 26, 2022Updated 3 years ago

Alternatives and similar repositories for pentesting-active-directory

Users that are interested in pentesting-active-directory are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sabrinalupsan / pentesting-azure-ad

  View on GitHub
  A cheatsheet of commands used to pass the CARTP (Certified Azure Red Team Professional) exam.
  ☆22May 4, 2023Updated 2 years ago
• D3Ext / malware-practices

  View on GitHub
  Repo for malware development practices I post on my blog
  ☆36Oct 5, 2024Updated last year
• claroty / PCOM-Tools

  View on GitHub
  ☆14Jul 29, 2024Updated last year
• VKo9 / AD-attacks-automation-scripts

  View on GitHub
  This repository contains scripts about ACL abuse and any other active directory attacking methods.
  ☆36Aug 20, 2023Updated 2 years ago
• Profanatic / Profanatica-Secret-Scanner

  View on GitHub
  An advanced scanner for exposed secrets in web pages, APIs, and source code.
  ☆13Apr 22, 2025Updated 11 months ago
• seajaysec / Ivanti-Connect-Around-Scan

  View on GitHub
  Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.
  ☆12Feb 3, 2024Updated 2 years ago
• Hipapheralkus / AIAIAI

  View on GitHub
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Apr 17, 2024Updated last year
• maxamin / AD-Mastertools-collection

  View on GitHub
  This is an AD pentest tools collection
  ☆59Jul 6, 2024Updated last year
• abdalrahman0x80 / smtpEmailChecker

  View on GitHub
  powerfull pentesting tool to checking email by smtp command
  ☆10Feb 29, 2024Updated 2 years ago
• chebuya / exploits

  View on GitHub
  Repo for all my exploits/PoCs
  ☆52May 6, 2025Updated 10 months ago
• Johnson90512 / Awesome-Security-Resources

  View on GitHub
  This repository is for tools, guides, cheatsheets, and anything else related to learning all different aspects of security.
  ☆95Sep 4, 2022Updated 3 years ago
• ifconfig-me / knoxss-bulk-scan

  View on GitHub
  ☆47Sep 20, 2024Updated last year
• tothi / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆13Oct 29, 2022Updated 3 years ago
• S-RM / HistoricShodanScanner

  View on GitHub
  A simple utility to quickly gather historic Port and CVE exposures from an IP range.
  ☆41Nov 12, 2023Updated 2 years ago
• adhikara13 / CVE-2024-3273

  View on GitHub
  Exploit for CVE-2024-3273, supports single and multiple hosts
  ☆13Apr 7, 2024Updated last year
• Yokonakajima11 / HackTheBox

  View on GitHub
  Cheatsheets
  ☆19Jul 4, 2022Updated 3 years ago
• tomstryhn / Active-Directory-Unknown-SID

  View on GitHub
  A small guide on Unknown/Orphaned SIDs and some PowerShell tools to help you get rid of them.
  ☆20Mar 28, 2022Updated 3 years ago
• seriotonctf / HackTheBox-AD-Machines

  View on GitHub
  A list of all Active Directory machines from HackTheBox
  ☆221Mar 2, 2026Updated 3 weeks ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS

  View on GitHub
  ☆35Nov 14, 2024Updated last year
• substing / CVE-2020-24186_reverse_shell_upload

  View on GitHub
  ☆13Dec 21, 2023Updated 2 years ago
• a7medibrahim12 / github-recon

  View on GitHub
  Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github …
  ☆21Aug 11, 2024Updated last year
• ron-imperva / CVE-2023-22524

  View on GitHub
  Atlassian Companion RCE Vulnerability Proof of Concept
  ☆25Dec 15, 2023Updated 2 years ago
• Ximoxkil547 / undetectableRevShell

  View on GitHub
  This repo is for the youtube video where we have explained how to make a detectable reverse shell undetectable by windows defender
  ☆29Mar 16, 2024Updated 2 years ago
• trickest / elasticsearch_index

  View on GitHub
  Manage attack surface data on Elasticsearch
  ☆25Nov 20, 2023Updated 2 years ago
• mqst / gouge

  View on GitHub
  Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…
  ☆28Jul 21, 2024Updated last year
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆129Dec 2, 2023Updated 2 years ago
• ifconfig-me / CVE-2024-24919-Bulk-Scanner

  View on GitHub
  CVE-2024-24919 [Check Point Security Gateway Information Disclosure]
  ☆32Jun 2, 2024Updated last year
• iPhantasmic / OSWP

  View on GitHub
  Notes and cheatsheets for the OffSec Wireless Professional (OSWP) certification
  ☆46Oct 29, 2023Updated 2 years ago
• giuseppe-argento83 / Powershell-PortScan

  View on GitHub
  Powershell Scripts for Blue Team members
  ☆11Dec 1, 2023Updated 2 years ago
• ACK-J / postMessage-tracker-firefox

  View on GitHub
  A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆27Dec 9, 2024Updated last year
• osintowl / realm_osint_ex

  View on GitHub
  A tool to check microsofts user real endpoint to get data about a tenant.
  ☆16Feb 6, 2025Updated last year
• JoasASantos / Red-Team-Exercises

  View on GitHub
  ☆688Updated this week
• byinarie / qu1ckdr0p2

  View on GitHub
  Quicky serve files over http or https using flask.
  ☆35Jan 26, 2025Updated last year
• drak3hft7 / Cheat-Sheet---Active-Directory

  View on GitHub
  This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.
  ☆616Jul 31, 2025Updated 7 months ago
• e1abrador / Burp-headerSnipper

  View on GitHub
  Burp extension used to snip any header from all the requests.
  ☆23Nov 12, 2023Updated 2 years ago
• Drakiat / Checker

  View on GitHub
  A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.
  ☆45Mar 8, 2024Updated 2 years ago
• s3c2 / UntrustIDE

  View on GitHub
  A framework for identifying vulnerabilities in VS Code extensions
  ☆19Jul 9, 2024Updated last year
• p4p1 / havoc-bloodhound

  View on GitHub
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Feb 3, 2024Updated 2 years ago
• kusano / ctfpwn_challenge

  View on GitHub
  ☆31Mar 26, 2023Updated 2 years ago