arsenal vs ActiveDirectoryAttackTool

arsenal

Arsenal is just a quick inventory and launcher for hacking programs (by Orange-Cyberdefense)

ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Controller. This tool is is best utilized using a set of known credentials against the host. (by The-Viper-One)

active-directory Oscp penetration-testing-tools security-tools Ctf Htb tryhackme red-team

Source Code

Suggest alternative

Edit details

Our great sponsors

WorkOS - The modern identity platform for B2B SaaS

InfluxDB - Power Real-Time Data Analytics at Scale

SaaSHub - Software Alternatives and Reviews

Our great sponsors

arsenal		ActiveDirectoryAttackTool
	Project
9	Mentions	2
2,982	Stars	90
1.9%	Growth	-
7.4	Activity	0.0
16 days ago	Latest Commit	about 1 year ago
Python	Language	Shell
GNU General Public License v3.0 only	License	-

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

arsenal

Posts with mentions or reviews of arsenal. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-05-18.

HackersToolKit.co - One-Stop Shop for Tool Commands for CTFs, bug bounty, and Penetration Testing
2 projects | /r/hackthebox | 18 May 2023
The road to round 2 (so far)
2 projects | /r/pnpt | 11 Apr 2023
Where can I find the best AD notes / cheatsheet for every situation :) ?
4 projects | /r/oscp | 7 Jun 2022

That AD Enum mindmap is here. I haven't tried adPEAS yet. But this was recommended many many times. Check. (:
Orange-Cyberdefense/arsenal: inventory and launcher for hacking programs
1 project | news.ycombinator.com | 2 Jun 2022
Arsenal
1 project | /r/hackerhood | 29 May 2022
GitHub - Orange-Cyberdefense/arsenal: Arsenal is just a quick inventory and launcher for hacking programs
1 project | /r/netsec | 29 May 2022
Reconmap 1.5.0 release notes
2 projects | dev.to | 8 May 2022

900s new commands were imported from the awesome https://github.com/Orange-Cyberdefense/arsenal project into Reconmap. This pushed us to add pagination, better search, sorting and so on to the command pages as it was otherwise impossible to find the right security command amongst the long list.
Just failed the new format. General thoughts.
2 projects | /r/oscp | 21 Apr 2022

I'm really interested in feedback of those that tried "everything" to laterally move in the domain sets but failed. Have you tried everything from this mindmap for example? Much of that is out of scope on OSCP but will help you learn more about the mindset of moving in a domain.
Pentesting AD Mindmap
1 project | /r/oscp | 11 Jan 2022

ActiveDirectoryAttackTool

Posts with mentions or reviews of ActiveDirectoryAttackTool. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-06-07.

A tool to help with Active Directory and Windows
1 project | /r/oscp | 19 Jun 2022

ADAT: https://github.com/The-Viper-One/ActiveDirectoryAttackTool
Where can I find the best AD notes / cheatsheet for every situation :) ?
4 projects | /r/oscp | 7 Jun 2022

What are some alternatives?

When comparing arsenal and ActiveDirectoryAttackTool you can also consider the following projects:

reconmap - Vulnerability assessment and penetration testing automation and reporting platform for teams.

adPEAS - Powershell tool to automate Active Directory enumeration.

linux-smart-enumeration - Linux enumeration tool for pentesting and CTFs with verbosity levels

RedTeaming_CheatSheet - Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

packages

t14m4t - Automated brute-forcing attack tool.

kashz-jewels - Gitbook: kashz-Jewels

Garud - An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

webrecon - Automated Web Recon Shell Scripts

AppleGamer22 - My write-ups (with references/bibliography to 3rd parties)