Testimo
vulnerable-AD
| Testimo | vulnerable-AD | |
|---|---|---|
| 6 | 14 | |
| 506 | 1,870 | |
| 1.6% | - | |
| 7.5 | 0.0 | |
| 3 months ago | 20 days ago | |
| PowerShell | PowerShell | |
| MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Testimo
- DNS (Windows/AD) Health-Checks and/or Utilities to confirm no errors/issues?
-
Software for monitoring/verifying presence of SYSVOL and NETLOGON shares.
Sources: - https://github.com/EvotecIT/Testimo - https://github.com/EvotecIT/GPOZaurr
-
Best Active Directory Analyzer?
I came across this the other day and it looks promising but haven't had a chance to dig into it yet. https://github.com/EvotecIT/Testimo
-
Monitoring LDAPS connectivity/certificate with PowerShell
GitHub Sources: https://github.com/EvotecIT/Testimo
-
The only command you will ever need to understand and fix your Group Policies (GPO)
Sources: https://github.com/EvotecIT/Testimo Blog: https://evotec.xyz/what-do-we-say-to-health-checking-active-directory/
vulnerable-AD
-
Student 1 Year out from Grad overwhelmed
At one he also mentions Vulnerable-AD, which might be helpful when learning how to identify and respond to AD attacks. This might give you an idea of what other areas/components to focus on with your projects. Good luck!
-
Active Directory Security Tools
VulnerableAD - perfect for creating a vulnerable AD environment - https://github.com/WazeHell/vulnerable-AD
- Failed with 60 points (with Lab report) in first attempt
- Virtual AD environmnet to play with Bloodhound
-
Vulnerable Machines
This is a pretty cool project: https://github.com/WazeHell/vulnerable-AD
-
Test in one month, kinda gave up but also don't want to skip the test nor do I want to completely bomb. I want to at least try, what are some good resources that are either cheaper/free to prepare?
https://github.com/WazeHell/vulnerable-AD for active directory 4 days.
- Can you recommend good active directory labs?
- Need resources for BO and AD study
-
Vulnerable Active Directory Domain Controller for you to attack! Easy, with tools loaded
I created a vulnerable domain controller. I used wazehell's powershell script, so you can do all kinds of attacks.
-
[HELP] :: AD LAB SETUP
I setup automated Chris Longs Detection Lab, to quickly spin up AD environment, AND i took WazeHell's Vulnerable-ad scripts to make the lab vulnerable to all kinds of attacks. Easy and effective lab with a domain controller, 2 servers and a windows 10 client.
What are some alternatives?
ADxRay - Active Directory's Health Check script that generates a full HTML report of the environment's health, security and status based on Microsoft's Best Practices.
GOAD - game of active directory
PSWriteHTML - PSWriteHTML is PowerShell Module to generate beautiful HTML reports, pages, emails without any knowledge of HTML, CSS or JavaScript. To get started basics PowerShell knowledge is required.
DVWA - Damn Vulnerable Web Application (DVWA)
ADEssentials - PowerShell Active Directory helper functions to manage healthy Active Directory
DetectionLab - Automate the creation of a lab environment complete with security tooling and logging best practices
PowerShell - PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)
BadBlood - BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
EventLogging - Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
AutomatedLab - AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2022, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
jumpcloud-ADMU - JumpCloud Active Directory Migration Utility - JCADMU
Minimalistic-offensive-security-tools - A repository of tools for pentesting of restricted and isolated environments.