Information Security
BloodHound is a single page Javascript web application, built on top of Linkurious, compiled with Electron, with a Neo4jdatabase fed by a PowerShell ingestor. BloodHound uses graph theory to reveal the hidden and often unintended relationships within...
AD ACL Scanner A tool completely is written in PowerShell. A tool with GUI used to create reports of access control lists (DACLs) and system access control lists (SACLs) in Active Directory. Features It...
Lithnet Password Protection for Active Directory (LPP) enhances the options available to an organization wanting to ensure that all their Active Directory accounts have strong passwords. LPP is a module that you install on...
Get-bADpasswords Get insights into the actual strength and quality of passwords in Active Directory. This module is able to compare password hashes of enabled Active Directory users against bad/weak/non-compliant passwords (e.g. hackers first guess...
Exchange-AD-Privesc This repository provides a few techniques and scripts regarding the impact of Microsoft Exchange deployment on Active Directory security. This is a side project of AD-Control-Paths, an AD permissions auditing project to which I...
ADRecon: Active Directory Recon ADRecon is a tool which extracts and combines various artifacts (as highlighted below) out of an AD environment. The information can be presented in a specially formatted Microsoft Excel report...
icebreaker Break the ice with that cute Active Directory environment over there. When you’re cold and alone staring in at an Active Directory party but don’t possess even a single AD credential to join...
cracke-dit (“Cracked It”) makes it easier to perform regular password audits against Active Directory environments. Ensuring your users have strong passwords throughout the organization is still your best line of defense against common attacks. Many organizations...
DCEPT (Domain Controller Enticing Password Tripwire) is a honeytoken-based tripwire for Microsoft’s Active Directory. Honeytokens are pieces of information intentionally littered with the system so they can be discovered by an intruder. In the...
Think like a Hacker to Secure the Organization like a Fortress The reality of external attacks today is simple: Attackers have made it their business to know more about the networking environment you work...
Suggested Reading