Summary
This is your AD attack automation once you're inside a Windows domain. It handles the full offensive toolkit: BloodHound enumeration to map attack paths, Kerberoasting and AS-REP roasting for credential cracking, NTLM relay attacks when SMB signing is off, and Golden/Silver ticket generation once you've got the KRBTGT hash. The workflow is thorough, covering everything from clock sync issues (Kerberos is picky) to DCSync for dumping domain credentials. It's built around Impacket, Rubeus, Mimikatz, and CrackMapExec, so you're not reinventing the wheel. The OPSEC section is worth reading before you lock out half the domain with password spraying. If you're doing internal pentests or red team engagements against Active Directory, this consolidates the playbook you'd otherwise be pulling from six different blog posts.
Install to Claude Code
npx -y skills add hypnguyen1209/offensive-claude --skill active-directory-attack --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
