Mapping AD

This page summarizes the projects mentioned and recommended in the original post on /r/activedirectory

Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
  • BloodHound

    Six Degrees of Domain Admin

  • BloodHound: To map AD resources, users, computers, permissions, gpos... It's the goto tool of all security consultants for finding attack paths within AD. Can't recommend it enough.

  • CrackMapExec

    Discontinued A swiss army knife for pentesting networks

  • Regarding network shares, I personally tend to use crackmapexec with a list of systems. It won't list the ACLs but it is very good at finding out what a standard domain user could access (if this is what you are after)

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts