sabrinalupsan/pentesting-active-directory external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sabrinalupsan/pentesting-active-directory

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sabrinalupsan/pentesting-active-directory)

Close

sabrinalupsan / pentesting-active-directoryView on GitHubMore

• External links
• Readme badge

A cheatsheet of tools and commands that I use to pentest Active Directory.

☆52Mar 26, 2022Updated 4 years ago

Alternatives and similar repositories for pentesting-active-directory

Users that are interested in pentesting-active-directory are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sabrinalupsan / pentesting-azure-ad

  View on GitHub
  A cheatsheet of commands used to pass the CARTP (Certified Azure Red Team Professional) exam.
  ☆24May 4, 2023Updated 3 years ago
• D3Ext / malware-practices

  View on GitHub
  Repo for malware development practices I post on my blog
  ☆36Oct 5, 2024Updated last year
• claroty / PCOM-Tools

  View on GitHub
  ☆14Jul 29, 2024Updated last year
• VKo9 / AD-attacks-automation-scripts

  View on GitHub
  This repository contains scripts about ACL abuse and any other active directory attacking methods.
  ☆36Aug 20, 2023Updated 2 years ago
• Profanatic / Profanatica-Secret-Scanner

  View on GitHub
  An advanced scanner for exposed secrets in web pages, APIs, and source code.
  ☆13Apr 22, 2025Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• seajaysec / Ivanti-Connect-Around-Scan

  View on GitHub
  Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.
  ☆12Feb 3, 2024Updated 2 years ago
• Hipapheralkus / AIAIAI

  View on GitHub
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Apr 17, 2024Updated 2 years ago
• maxamin / AD-Mastertools-collection

  View on GitHub
  This is an AD pentest tools collection
  ☆59Jul 6, 2024Updated last year
• abdalrahman0x80 / smtpEmailChecker

  View on GitHub
  powerfull pentesting tool to checking email by smtp command
  ☆10Feb 29, 2024Updated 2 years ago
• chebuya / exploits

  View on GitHub
  Repo for all my exploits/PoCs
  ☆52May 6, 2025Updated 11 months ago
• Johnson90512 / Awesome-Security-Resources

  View on GitHub
  This repository is for tools, guides, cheatsheets, and anything else related to learning all different aspects of security.
  ☆93Sep 4, 2022Updated 3 years ago
• ifconfig-me / knoxss-bulk-scan

  View on GitHub
  ☆46Sep 20, 2024Updated last year
• S-RM / HistoricShodanScanner

  View on GitHub
  A simple utility to quickly gather historic Port and CVE exposures from an IP range.
  ☆41Nov 12, 2023Updated 2 years ago
• adhikara13 / CVE-2024-3273

  View on GitHub
  Exploit for CVE-2024-3273, supports single and multiple hosts
  ☆13Apr 7, 2024Updated 2 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• Yokonakajima11 / HackTheBox

  View on GitHub
  Cheatsheets
  ☆19Jul 4, 2022Updated 3 years ago
• tomstryhn / Active-Directory-Unknown-SID

  View on GitHub
  A small guide on Unknown/Orphaned SIDs and some PowerShell tools to help you get rid of them.
  ☆21Apr 16, 2026Updated 2 weeks ago
• substing / CVE-2020-24186_reverse_shell_upload

  View on GitHub
  ☆13Dec 21, 2023Updated 2 years ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS

  View on GitHub
  ☆35Nov 14, 2024Updated last year
• a7medibrahim12 / github-recon

  View on GitHub
  Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github …
  ☆21Aug 11, 2024Updated last year
• ron-imperva / CVE-2023-22524

  View on GitHub
  Atlassian Companion RCE Vulnerability Proof of Concept
  ☆25Dec 15, 2023Updated 2 years ago
• seriotonctf / HackTheBox-AD-Machines

  View on GitHub
  A list of all Active Directory machines from HackTheBox
  ☆252Apr 26, 2026Updated last week
• Ximoxkil547 / undetectableRevShell

  View on GitHub
  This repo is for the youtube video where we have explained how to make a detectable reverse shell undetectable by windows defender
  ☆29Mar 16, 2024Updated 2 years ago
• mqst / gouge

  View on GitHub
  Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…
  ☆29Jul 21, 2024Updated last year
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆130Dec 2, 2023Updated 2 years ago
• ifconfig-me / CVE-2024-24919-Bulk-Scanner

  View on GitHub
  CVE-2024-24919 [Check Point Security Gateway Information Disclosure]
  ☆31Jun 2, 2024Updated last year
• iPhantasmic / OSWP

  View on GitHub
  Notes and cheatsheets for the OffSec Wireless Professional (OSWP) certification
  ☆49Oct 29, 2023Updated 2 years ago
• giuseppe-argento83 / Powershell-PortScan

  View on GitHub
  Powershell Scripts for Blue Team members
  ☆11Dec 1, 2023Updated 2 years ago
• ACK-J / postMessage-tracker-firefox

  View on GitHub
  A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆27Dec 9, 2024Updated last year
• osintowl / realm_osint_ex

  View on GitHub
  A tool to check microsofts user real endpoint to get data about a tenant.
  ☆16Feb 6, 2025Updated last year
• JoasASantos / Red-Team-Exercises

  View on GitHub
  ☆699Apr 26, 2026Updated last week
• sailay1996 / vss-fr2system

  View on GitHub
  test
  ☆95Apr 25, 2026Updated last week
• byinarie / qu1ckdr0p2

  View on GitHub
  Quicky serve files over http or https using flask.
  ☆35Jan 26, 2025Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• drak3hft7 / Cheat-Sheet---Active-Directory

  View on GitHub
  This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.
  ☆622Apr 3, 2026Updated last month
• e1abrador / Burp-headerSnipper

  View on GitHub
  Burp extension used to snip any header from all the requests.
  ☆23Nov 12, 2023Updated 2 years ago
• Drakiat / Checker

  View on GitHub
  A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.
  ☆45Mar 8, 2024Updated 2 years ago
• s3c2 / UntrustIDE

  View on GitHub
  A framework for identifying vulnerabilities in VS Code extensions
  ☆19Jul 9, 2024Updated last year
• p4p1 / havoc-bloodhound

  View on GitHub
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Feb 3, 2024Updated 2 years ago
• bigb0x / CVE-2024-36401

  View on GitHub
  POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.
  ☆35Jul 4, 2024Updated last year
• Minotaur-OPSEC / NO-KYC-SERVICES

  View on GitHub
  Guía completa para configurar y utilizar servicios financieros NO-KYC. Este repositorio cubre herramientas de finanzas digitales anónimas…
  ☆16Aug 7, 2024Updated last year