active-directory

There are 52 repositories under active-directory topic.

• casdoor / casdoor

  An open-source UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, RADIUS, Google Workspace, Active Directory and Kerberos

  active-directorycasbincasdoorfaceidgoiamkerberosldapmfaoauthoidcpayment-gatewayradiusreactsamlscimsingle-sign-onssototpwebauthn
  Language:Go 8732
• CrackMapExec

  byt3bl33d3r / CrackMapExec

  A swiss army knife for pentesting networks

  pythonactive-directorypentestingwindowspowershellnetworks
  Language:Python 8148

• S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet

  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

  activedirectoryactive-directorycheatsheetactive-directory-cheatsheetactive-directory-exploitationsecuritypentestingpenetration-testinghackinghacking-cheasheethacking-toolshacking-toolcheatcheat-sheetexploitationprivilege-escalationenumerationattackwindows-active-directorywindows
  5076
• LogonTracer

  JPCERTCC / LogonTracer

  Investigate malicious Windows logon by visualizing and analyzing Windows event log

  securitydfirjavascriptvisualizationactive-directoryevent-logblueteampython-3
  Language:Python 2633
• PowerShell

  lazywinadmin / PowerShell

  PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)

  active-directoryazureconfigmgrhacktoberfestlazywinadminoffice365powershellsccmscriptingscriptsvmware
  Language:PowerShell 2435

• Integration-IT / Active-Directory-Exploitation-Cheat-Sheet

  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

  active-directoryactive-directory-cheatsheetactive-directory-exploitationcheat-sheetcheatsheetenumerationexploitationhackinghacking-cheasheethacking-toolhacking-toolsinfosecpenetration-testingpentestingpowershellprivilege-escalationsecuritywindowswindows-active-directory
  Language:PowerShell 2307
• NetExec

  Pennyw0rth / NetExec

  The Network Execution Tool

  hackingpentestpentest-toolpentest-toolspentestingpythonpython3red-teamactive-directoryinfosecsecuritysecurity-toolsinfosectoolsnetworkswindows
  Language:Python 2152

• vletoux / pingcastle

  PingCastle - Get Active Directory Security at 80% in 20% of the time

  active-directoryping-castlepingcastlesecuritymimikatzcisoreporting-toolstignistdodhipaasox
  Language:C# 2139

• AutomatedLab / AutomatedLab

  AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2022, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.

  powershelldeploymentactivedirectorypkiexchangescriptedactive-directorydomain-controllerautomated-deploymentscripted-deploymentlab-machineazurehypervhyper
  Language:PowerShell 1947

• safebuffer / vulnerable-AD

  Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

  active-directorypowershellredteamingpenetration-testingvulnerable-advulnerable-activedirectory
  Language:PowerShell 1882

• jakubgarfield / Bonobo-Git-Server

  Bonobo Git Server for Windows is a web application you can install on your IIS and easily manage and connect to your git repositories. Go to homepage for release and more info.

  active-directorybonoboc-sharpgitgit-serveriiswindows
  Language:C# 1790

• lefayjey / linWinPwn

  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

  penetration-testingpentestingactive-directoryhackingimpacketbloodhoundkerberoastenumerationexploitationpentest-tooladsecurityadcskerberosmssqlpentest
  Language:Shell 1712

• ihebski / A-Red-Teamer-diaries

  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

  active-directorycrackmapexeccybersecurityengagementenumerationexploithackinglateral-movementmetasploitmeterpretermimikatznmappenetration-testingpentestingprivilege-escalationredteamscriptsecurity-toolstoolsvulnerability
  1669

• byt3bl33d3r / DeathStar

  Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

  active-directorypentestingpythonsecurity
  Language:Python 1565

• lkarlslund / Adalanche

  Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

  blueteamactive-directoryactivedirectoryaclinfosecldapgraph-theoryreconnaissanceacl-auditad-auditldap-audit
  Language:Go 1546
• DSInternals

  MichaelGrafnetter / DSInternals

  Directory Services Internals (DSInternals) PowerShell Module and Framework

  security-auditpenetration-testingactive-directorynuget-packagesntdspowershelldpapisamlsapasswordsazure-adfido2
  Language:C# 1535

• dromara / MaxKey

  🗝️MaxKey SSO ,Leading-Edge IAM-IDaas(Identity and Access Management) Product，业界领先的IAM-IDaas身份管理和认证产品,支持OAuth2.x、OpenID Connect、SAML2.0、JWT、CAS、SCIM等SSO标准协议，基于RBAC统一权限控制，实现用户生命周期管理，开源、安全、合规、自主可控。

  samljwtcasrbacscim-2ssomfaiamidentityopenid-connectldapmulti-tenancyoauth2authenticationoauthsingle-sign-onactive-directorytoptkerberoscloud-identity
  Language:Java 1285

• Qianlitp / WatchAD

  AD Security Intrusion Detection System

  active-directoryblue-teamdefcon27event-logintrusion-detection-systemkerberosntlmpython3securitywatchad
  Language:Python 1279
• Windows-11-Guide

  mikeroyal / Windows-11-Guide

  Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.

  windows-11windows11privacy-protectionwindows-terminaloptimizationwinui3tweakswindows-defendergamingwindows-subsystem-linuxvisual-studio-codewinuiuwphardeningwindows-desktopdebloatwslactive-directorynextcloudwindows10
  Language:C# 1265

• nccgroup / redsnarf

  RedSnarf is a pen-testing / red-teaming tool for Windows environments

  windowspentestingpentesting-windowspythonactive-directory
  Language:PowerShell 1197

• RistBS / Awesome-RedTeam-Cheatsheet

  Red Team Cheatsheet in constant expansion.

  active-directoryattackattacking-active-directorybypass-antiviruscheat-sheetcheat-sheetscheatsheetenumerationhackingopsecoscposeppentestingpowershellreal-liferedteamredteamingtools
  1066
• PlumHound

  PlumHound / PlumHound

  Bloodhound for Blue and Purple Teams

  activeactive-directoryactivedirectoryattack-pathsbloodhoundbloodhoundadbloodhoundad-cypher-queriesbloodhoundad-pathfinding-enginebluehoundblueteamcypher-querydirectoryinfosecneo4jplumhound-taskspurple-teamspurpleteamredteamreporting-tool
  Language:Python 1019

• mdecrevoisier / Microsoft-eventlog-mindmap

  Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...

  mindmapevtxwindowsincident-responseazureexchangeactive-directory
  983

• lkarlslund / ldapnomnom

  Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)

  active-directorybruteforcebruteforcercldapldap
  Language:Go 960

• safebuffer / sam-the-admin

  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

  active-directoryexploitationredteams4u2self
  Language:Python 960

• NH-RED-TEAM / RustHound

  Active Directory data collector for BloodHound written in Rust. 🦀

  active-directorybloodhoundcollectorcross-platformpentestingrustnetworkwindowscross-compiledblueteampentestredteamsharphoundadcs
  Language:Rust 868

• the-useless-one / pywerview

  A (partial) Python rewriting of PowerSploit's PowerView

  active-directorylinuxpentestpythonreconnaissance
  Language:Python 836

• p0dalirius / LDAPmonitor

  Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!

  active-directorycsharpldapmonitorpentestpowershellpythontool
  Language:C# 799

• Badgerati / Pode

  Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers

  powershellrestpowershell-corewindowsunixcross-platformwebserverframeworkhttpsauthenticationsessionactive-directorydockerraspberry-piopenapiswaggerserverlesswebserverhacktoberfest
  Language:PowerShell 780

• 0xdea / tactical-exploitation

  Modern tactical exploitation toolkit.

  penetration-testingactive-directoryinformation-gatheringbrute-forcemetasploit-framework
  Language:Python 777

• cyberark / ACLight

  A script for advanced discovery of Privileged Accounts - includes Shadow Admins

  powershellaclactive-directoryaccount-managementshadow-admin
  Language:PowerShell 768
• OpenAM

  OpenIdentityPlatform / OpenAM

  OpenAM is an open access management solution that includes Authentication, SSO, Authorization, Federation, Entitlements and Web Services Security.

  aaaaccessaccess-managementaccountingactive-directoryauthenticationauthorizationcddljavajdbckerberosldapoauthoauth2oidcopenamopenssopolicysamlsso
  Language:Java 724

• TrimarcJake / Locksmith

  A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.

  active-directoryad-csadcspkipowershellpowershell-modulepowershell-scriptactive-directory-certificate-services
  Language:PowerShell 689

• The-Viper-One / PsMapExec

  A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec

  crackmapexechackingmimikatzpentestingpowershellactive-directoryvnclateral-movementrdpsamspraying
  Language:PowerShell 675

• chryzsh / DarthSidious

  Building an Active Directory domain and hacking it

  active-directoryhackinglabpowershell
  641

• GoFetchAD / GoFetch

  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.

  bloodhoundgofetchpowershellactive-directorysecurityblackhat2017
  Language:PowerShell 622