Summary
This is a red team operator's checklist for Active Directory penetration testing. It walks through the standard attack chain: BloodHound reconnaissance, Kerberoasting and AS-REP roasting for credential extraction, DCSync for domain controller dumps, and ticket attacks like golden and silver tickets. The workflow is practical, covering clock sync issues with Kerberos, tools like Impacket and Rubeus, and newer exploits like ZeroLogon and PrintNightmare. It's built for authorized engagements where you need to demonstrate domain compromise paths. The quick reference table at the end is genuinely useful if you keep forgetting which Impacket script does what.
Install to Claude Code
npx -y skills add sickn33/antigravity-awesome-skills --skill active-directory-attacks --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →First SeenJun 3, 2026
