SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 active-directory Open-Source Projects
-
Let’s walk through a typical attack against the Administrator account using a popular tool, CrackMapExec.
-
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
-
SonarLint
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
-
PowerShell
PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...) (by lazywinadmin)
Project mention: A way to see how frequently Exchange Meeting rooms are being used? | reddit.com/r/PowerShell | 2022-08-12 -
Bonobo Git Server
Bonobo Git Server for Windows is a web application you can install on your IIS and easily manage and connect to your git repositories. Go to homepage for release and more info.
Project mention: Phabricator replacement? | Or OpenProject alternative? | issue tracking/code | reddit.com/r/selfhosted | 2022-08-02Bonobo Git Server - git server, I will need this (or similar) but no bug tracking
-
AutomatedLab
AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2022, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
AutomatedLab - AWESOME for deploying labs - https://github.com/AutomatedLab/AutomatedLab
-
Project mention: Specific user account breaks any computers domain connection is logs into... Stumped! | reddit.com/r/sysadmin | 2023-01-29
-
vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
VulnerableAD - perfect for creating a vulnerable AD environment - https://github.com/WazeHell/vulnerable-AD
-
InfluxDB
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Platform where developers build real-time applications for analytics, IoT and cloud-native services. Easy to start, it is available in the cloud or on-premises.
-
Project mention: Customer ransomwared, and in bad place. Active Directory the priority. | reddit.com/r/activedirectory | 2022-12-22
As you have no AD specific backup or recovery plan nor do you have an idea of when ransomware was copied into the environment I.e. how long was it sitting dormant? I’d suggest you take the backup you have then use this script from DSInternals - https://github.com/MichaelGrafnetter/DSInternals/blob/master/Documentation/PowerShell/New-ADDBRestoreFromMediaScript.md - to restore ONLY Active Directory (NTDS + SYSVOl) into clean media (needs to be the same major OS version).
-
Project mention: WatchAD: AD Security Intrusion Detection System from 🇨🇳 with ♥️ | reddit.com/r/blueteamsec | 2022-10-17
-
A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Project mention: GitHub - A-Red-Teamer-diaries: RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements. | reddit.com/r/UIC | 2022-06-27 -
Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Adalanche - AD ACL Explorer/Visualizer - https://github.com/lkarlslund/Adalanche
-
sam-the-admin
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
-
Microsoft-eventlog-mindmap
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
Project mention: Microsoft-eventlog-mindmap: Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,... included threat hunting for email forwarding rules | reddit.com/r/blueteamsec | 2022-08-27 -
ldapnomnom
Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)
Project mention: GitHub - lkarlslund/ldapnomnom: Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP) | reddit.com/r/bag_o_news | 2022-11-20 -
-
Pode
Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers
Project mention: Developing a Web Application with PowerShell - Pode, the PowerFul Module | dev.to | 2023-01-29Code: https://github.com/thekamilpro/About-PowerShell/tree/main/PowerFul%20Modules/Pode Pode website: https://badgerati.github.io/Pode Pode.Web website: https://badgerati.github.io/Pode.Web/ Pode Discord: https://discord.gg/fRqeGcbF6h
-
LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
-
Minimalistic-offensive-security-tools
A repository of tools for pentesting of restricted and isolated environments.
-
Testimo
Testimo is a PowerShell module for running health checks for Active Directory against a bunch of different tests
-
EventLogging
Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
Project mention: EventLogging - Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment | reddit.com/r/purpleteamsec | 2022-10-26 -
-
Project mention: Why are there so many OIDC SSO options for Kubernetes? | reddit.com/r/kubernetes | 2022-11-26
pinniped
-
ad-password-protection
Active Directory password filter featuring breached password checking and custom complexity rules
I would like to enforce my active directory policy by adding a password filter. I had already found the solution Lithnet Password filter on Github (https://github.com/lithnet/ad-password-protection). This solution is really great but unfortunately, it applies to all users and not to a specific group. Do you know another solution with more granularity?
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
The latest post mention was on 2023-01-29.
active-directory related posts
- Specific user account breaks any computers domain connection is logs into... Stumped!
- How to find out how many users have been given local admin rights on their machines?
- Need advice for securing company laptops
- Create a standard account, no admin account
- Customer ransomwared, and in bad place. Active Directory the priority.
- Mac User accounts
- Powershell command to add user in multiple AD groups
-
A note from our sponsor - #<SponsorshipServiceOld:0x00007fea598e9860>
www.saashub.com | 30 Jan 2023
Index
What are some of the best open-source active-directory projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | CrackMapExec | 6,866 |
| 2 | Active-Directory-Exploitation-Cheat-Sheet | 3,565 |
| 3 | PowerShell | 1,973 |
| 4 | Bonobo Git Server | 1,755 |
| 5 | AutomatedLab | 1,693 |
| 6 | pingcastle | 1,539 |
| 7 | vulnerable-AD | 1,307 |
| 8 | DSInternals | 1,261 |
| 9 | WatchAD | 1,154 |
| 10 | A-Red-Teamer-diaries | 1,090 |
| 11 | Adalanche | 1,048 |
| 12 | sam-the-admin | 875 |
| 13 | Microsoft-eventlog-mindmap | 830 |
| 14 | ldapnomnom | 615 |
| 15 | pywerview | 605 |
| 16 | Pode | 569 |
| 17 | LDAPmonitor | 512 |
| 18 | Minimalistic-offensive-security-tools | 440 |
| 19 | Testimo | 406 |
| 20 | EventLogging | 404 |
| 21 | Kerberos.NET | 397 |
| 22 | pinniped | 392 |
| 23 | ad-password-protection | 359 |
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com