π¦ ClawHub
Pentest Active Directory
by @0x-professor
Assess Active Directory identity attack paths including roasting, relay, and delegation abuse.
TERMINAL
clawhub install pentest-active-directoryπ About This Skill
name: pentest-active-directory description: Assess Active Directory identity attack paths including roasting, relay, and delegation abuse.
Pentest Active Directory
Stage
Objective
Map and validate AD privilege escalation and movement paths.
Required Workflow
1. Validate scope before any active action and reject out-of-scope targets. 2. Run only authorized checks aligned to PTES, OWASP WSTG, NIST SP 800-115, and MITRE ATT&CK. 3. Write findings in canonical finding_schema format with reproducible PoC notes. 4. Honor dry-run mode and require explicit --i-have-authorization for live execution. 5. Export deterministic artifacts for downstream skill consumption.
Execution
python skills/pentest-active-directory/scripts/active_directory.py --scope scope.json --target --input --output --format json --dry-run
Outputs
ad-findings.jsonad-attack-paths.jsonad-report.jsonReferences
references/tools.mdskills/autonomous-pentester/shared/scope_schema.jsonskills/autonomous-pentester/shared/finding_schema.jsonLegal and Ethical Notice
WARNING AUTHORIZED USE ONLY
This skill executes real security testing tools against live targets.
Use only with written authorization.