Active Directory penetration testing frameworks help enterprise security teams assess identity risk in a structured, repeatable, and evidence-driven way. Because AD controls authentication, authorization, group policy, trust relationships, and access to business-critical systems, an AD assessment should not be treated like a generic network scan. It needs a workflow that maps identity relationships, validates real escalation paths, tests detection coverage, and confirms remediation without creating unnecessary operational risk.
Why Active Directory Requires Specialized Penetration Testing
Active Directory is not just another infrastructure service. In enterprise environments, it often acts as the control plane for users, workstations, servers, applications, and cloud-integrated identity systems.
SISA’s Active Directory testing overview frames the core risk clearly: when AD is compromised, attackers can gain control over users, systems, and business-critical resources across on-premises and cloud environments. That is why AD penetration testing focuses heavily on identity abuse, privilege relationships, delegation, trust paths, and credential exposure—not only exposed services.
Key insight: The central question of an AD assessment is not simply “What vulnerabilities exist?” It is “How close is an attacker to owning the domain?”
Specialized Active Directory penetration testing frameworks are useful because AD attacks are often chained. A low-privileged user, an over-permissive access control entry, an exposed credential, and a misconfigured delegation setting may not look catastrophic in isolation. Together, they may create a path to domain compromise.
A practical AD assessment should therefore test:
- Credential exposure: Passwords, hashes, tickets, cached secrets, and sensitive files.
- Privilege escalation paths: Group nesting, ACL/ACE abuse, delegation, certificate services, and local admin rights.
- Trust relationships: Domain, forest, hybrid, and cross-boundary identity relationships.
- Kerberos and authentication abuse: Roasting, ticket misuse, PKINIT workflows, and ticket validation issues.
- Lateral movement risk: Paths through SMB, WinRM, WMI, RDP, MSSQL, SCCM/MECM, and administrative shares.
- Detection and containment: Whether security teams can see and respond to identity-based attack activity.
SISA also emphasizes an assumed-breach mindset. That matters because many enterprise AD tests begin with standard user access rather than external compromise. The goal is to determine what a realistic attacker could do after obtaining a foothold.
Core Phases of an AD Security Assessment
A mature AD penetration test should follow a structured lifecycle. The provided source data from AdStrike organizes AD activity into kill-chain style phase groups, while SISA describes delivery stages such as identity architecture understanding, credential and privilege mapping, controlled escalation, detection assessment, and reporting.
A safe enterprise workflow can combine both approaches.
| Phase | Objective | Example Activities from Source Data | Primary Output |
|---|---|---|---|
| 1. Scoping and authorization | Confirm written permission, boundaries, and safety rules | AdStrike explicitly states authorized use only and requires explicit written permission | Rules of engagement and test plan |
| 2. Identity architecture review | Understand AD design, trusts, and cloud integrations | SISA reviews AD design, trust relationships, and cloud integrations | Identity risk model |
| 3. Reconnaissance and discovery | Identify domain services, hosts, DNS, and exposed AD services | AdStrike reconnaissance covers DNS, WHOIS, email harvest, certificate transparency, nmap, masscan, nbtscan, netdiscover, and IPv6 scanning | Asset and service inventory |
| 4. Enumeration | Collect users, groups, GPOs, SPNs, trusts, shares, and delegation data | AdStrike AD Enumeration covers LDAP, SMB, GPO, DNS, trusts, SPNs, LAPS, and delegation | Baseline AD dataset |
| 5. Attack path mapping | Identify realistic privilege paths | BloodHound Helper supports SOAPHound, RustHound, ADExplorer, and Neo4j queries | Attack path map |
| 6. Controlled escalation testing | Validate whether paths are exploitable under agreed constraints | SISA emphasizes validation of real escalation paths, not theoretical access | Confirmed risk evidence |
| 7. Detection and response review | Assess whether identity attacks are detected and contained | SISA includes detection and visibility assessment | Detection gap findings |
| 8. Reporting and remediation planning | Deliver findings with evidence and priorities | AdStrike supports HTML, Markdown, and JSON reporting | Executive and technical reports |
| 9. Remediation validation | Re-test fixes and confirm risk reduction | SISA lists optional re-assessment after fixes | Closure evidence |
A practical first-run assessment flow
AdStrike’s documentation provides a useful example of how a framework can organize an operator’s workflow. Its recommended first-run flow is:
- Session Manager: Configure target and credentials.
- Tool Checker: Verify external tools and module imports.
- AD Enumeration: Collect baseline LDAP, SMB, and GPO data.
- Smart Analyst: Parse output and rank next steps.
- Generate Report: Export findings and evidence.
That sequence is important because it avoids jumping straight into exploitation. For enterprise work, enumeration and validation should be tied to scope, safety limits, and business risk.
git clone https://github.com/capture0x/AdStrike.git
cd AdStrike
chmod +x install.sh run.sh
bash install.sh
source venv/bin/activate
bash run.sh
AdStrike’s documentation also warns not to run install.sh or run.sh with sudo, because the installer creates repository-local files such as virtual environments, .env, and output directories.
Safety note: Never run AD testing tools against systems without explicit written authorization. AdStrike’s own documentation states this directly, and the same rule applies to every toolchain discussed here.
Frameworks and Toolchains Commonly Used in AD Testing
Active Directory penetration testing frameworks range from full workflow platforms to specialized utilities. The provided source data gives the most detail on AdStrike, while also listing common AD tooling that AdStrike wraps or orchestrates.
At the time of writing, AdStrike v5.0 is described as a beta/research build. Its menu and import health checks pass, but individual modules still depend on target state, credentials, network reachability, and installed third-party tools.
AD framework and toolchain comparison
| Tool or Framework | Confirmed Role from Source Data | Notable Capabilities Mentioned | Best Fit in Workflow |
|---|---|---|---|
| AdStrike | Modular terminal-based Active Directory attack framework | Discovery, enumeration, exploitation, credential access, lateral movement, persistence, reporting, shared session state | End-to-end AD assessment orchestration |
| BloodHound | AD attack path analysis tool used through AdStrike wrappers | BloodHound Helper supports SOAPHound, RustHound, ADExplorer, and Neo4j queries | Attack path and privilege relationship mapping |
| PowerView | PowerShell-based AD enumeration utility | Undercode describes using PowerView to enumerate users and descriptions; AdStrike includes PowerView Enumeration | User, group, ACL, and domain enumeration |
| Rubeus | Kerberos-focused toolkit | Undercode describes TGT and pass-the-ticket workflows; AdStrike includes Rubeus Toolkit coverage for TGT, TGS, roasting, PTT, S4U, and monitor mode | Kerberos validation and ticket-related testing |
| Impacket | Common AD tooling wrapped by AdStrike | Listed among AdStrike external tools and wrappers | Protocol-level AD operations and assessment support |
| NetExec / NXC | Network and AD assessment suite | AdStrike module covers SMB, LDAP, MSSQL, WinRM, and RDP | Service enumeration and access validation |
| Certipy | AD Certificate Services testing | AdStrike references Certipy and ADCS workflows, including ESC1–ESC13 coverage | Certificate services misconfiguration testing |
| Kerbrute | Kerberos username/password testing utility | Listed as an AdStrike external tool; AdStrike Password Attacks covers spray and Kerbrute | Controlled password and Kerberos testing |
| Responder | NTLM capture/relay-related tooling | Listed as an AdStrike external tool; AdStrike initial access includes NTLM capture and relay | Carefully scoped credential exposure testing |
| Evil-WinRM | Remote management access tool | Listed as an AdStrike external tool; lateral movement module includes Evil-WinRM | Validating administrative access paths |
| Mimikatz | Credential and ticket abuse tooling referenced by Undercode | Undercode discusses credential dumping and Golden Ticket concepts | High-risk credential validation in tightly controlled tests |
AdStrike as an example AD penetration testing framework
AdStrike is the most framework-like option in the provided research. Its core design is to maintain shared session state across modules. According to its documentation, the framework stores target details, credentials, Kerberos state, findings, executed commands, and output paths in one shared session.
That matters in enterprise assessments because repeated manual entry increases the chance of operator error. A session-oriented workflow also makes reporting easier because findings and executed actions can be tied back to evidence.
AdStrike’s documented capabilities include:
- 58 interactive menu entries: 52 attack modules, 4 utilities, and 2 management functions.
- 9 kill-chain phase groups: From reconnaissance through advanced operations.
- Kerberos-aware workflows: Including support for NTLM-disabled and LDAP-signing-enforced environments.
- Smart Analyst: Parses output and ranks next actions.
- Optional AdStrike Agent: AI-assisted planning or orchestration.
- MCP server: Exposes 53 tools over the Model Context Protocol.
- Reporting: Generates HTML, Markdown, and JSON reports.
- Tool wrappers: Includes common AD tooling such as Impacket, NetExec, Certipy, Kerbrute, BloodHound, PowerView, Rubeus, and related utilities.
AdStrike requirements and operating assumptions
AdStrike’s requirements are also useful as a checklist for enterprise readiness.
| Requirement Area | Details from Source Data |
|---|---|
| Operating system | Kali Linux or Parrot OS recommended |
| Python | 3.10 or higher |
| Privileges | Normal user for the framework; root only for tools requiring packet capture or privileged network actions |
| Network reachability | Commonly requires access to AD services on 88, 389, 443, 445, 636, and 5985 |
| External tools | Includes impacket-scripts, nxc/netexec, bloodhound-python, certipy-ad, evil-winrm, kerbrute, responder, ldap-utils, hashcat, john, nmap/masscan, krb5-user, dnstool.py, dig, and ldapsearch |
A sample sanitized engagement configuration resembles the following:
DC_IP=10.10.10.10
DC_FQDN=dc1.corp.local
DOMAIN=corp.local
BASE_DN=DC=corp,DC=local
USERNAME=user
PASSWORD=
NT_HASH=
USE_KERBEROS=false
KRB5_CCACHE=
ATTACKER_IP=10.10.14.5
ATTACKER_IFACE=tun0
ENGAGEMENT_NAME=Corp-Internal-2026
ADSTRIKE_SHOW_SECRETS=false
AdStrike’s documentation explicitly warns not to commit real engagement data. That includes .env files, output directories, ticket files, hashes, dumps, reports, and captured loot.
Mapping Attack Paths and Privilege Relationships
Attack path mapping is one of the main reasons Active Directory penetration testing frameworks are different from general-purpose scanners. In AD, the shortest path to domain compromise may involve group nesting, ACL abuse, delegation, certificate templates, local admin rights, or trust relationships.
SISA states that AD testing should validate real escalation paths rather than theoretical access. That distinction is critical. A report that says “User X may have excessive rights” is less actionable than one that shows how those rights could be chained to control a sensitive system—within the agreed rules of engagement.
What to map during AD attack path discovery
| Relationship Type | Why It Matters | Source-Grounded Examples |
|---|---|---|
| Group memberships | Nested groups can create hidden privilege | SISA includes credential and privilege mapping |
| Access control entries | ACL/ACE misconfigurations can allow privilege escalation | AdStrike includes ACL/ACE Abuse covering GenericAll, WriteDACL, ForceChangePassword, and AddMember |
| Delegation settings | Delegation can expose service-based escalation paths | AdStrike AD Enumeration includes delegation; privilege escalation includes RBCD Full Chain |
| Certificate services | ADCS misconfigurations can create identity escalation paths | AdStrike Certificate Abuse covers ESC1–ESC13 and Certipy |
| Trusts | Domain and forest trusts can expand blast radius | SISA reviews trust relationships; AdStrike includes Trust Attacks |
| Cloud and hybrid identity links | On-prem AD weaknesses may affect cloud-integrated identity | SISA includes cloud integrations; AdStrike includes Azure AD / Entra ID and hybrid modules |
| Administrative sessions | Logged-on admins can create lateral movement opportunities | AdStrike User Hunting includes SessionHunter and PSRemoting admin checks |
BloodHound-style analysis
AdStrike includes a BloodHound Helper module that supports SOAPHound, RustHound, ADExplorer, and Neo4j queries. The purpose of this phase is not just to collect graphs; it is to convert privilege relationships into prioritized testing hypotheses.
A safe workflow is:
- Collect only approved data from in-scope domain controllers, workstations, and servers.
- Import relationship data into the approved graphing workflow.
- Identify shortest or highest-impact paths to tier-zero assets.
- Validate paths carefully using agreed test accounts or controlled actions.
- Document both the relationship and the business impact.
Critical warning: Do not treat every graph path as permission to exploit. Enterprise rules of engagement should define which paths may be validated, which require approval, and which should remain theoretical.
Testing Kerberos, Credential Exposure, and Lateral Movement Risks
Kerberos, credential exposure, and lateral movement are recurring themes across the source data. Undercode’s AD guide discusses PowerView enumeration, Rubeus-based Kerberos workflows, credential dumping concepts, PsExec-based lateral movement, token impersonation, Golden Tickets, and defensive Kerberos monitoring. AdStrike includes dedicated modules for Kerberos attacks, Rubeus, credential dumping, DPAPI, DCSync/DCShadow, shadow copies, and lateral movement.
Because these areas can be operationally sensitive, enterprise testing should use controlled validation rather than indiscriminate exploitation.
Kerberos testing
Kerberos testing should answer whether attackers can abuse tickets, service principals, weak authentication paths, or certificate-backed authentication.
AdStrike’s Kerberos-related modules include:
- Kerberos Attacks: AS-REP roast, Kerberoast, pass-the-ticket, overpass-the-hash, tickets, and PKINIT.
- Rubeus Toolkit: TGT, TGS, roasting, PTT, S4U, and monitor mode.
- Kerberos Manager: TGT, PTT, S4U, ccache, kirbi, and
krb5.confmanagement. - Shadow Credentials:
msDS-KeyCredentialLink, pywhisker, and PKINIT. - UnPAC / PassTheCert: Targeted Kerberoast, UnPAC, PassTheCert, and SPN-Jack.
Undercode also notes a defensive angle: monitor Kerberos events such as Event ID 4769 and investigate anomalous ticket options, including the example value 0x40810000, which it associates with an encryption downgrade indicator. It also recommends resetting the KRBTGT password twice to invalidate forged tickets after Golden Ticket exposure.
Credential exposure testing
Credential exposure testing should be scoped tightly because it can involve highly sensitive material. AdStrike’s credential access phase includes:
| Module | Coverage from Source Data |
|---|---|
| Credential Dumping | LSASS, SAM, NTDS, lsassy, nanodump, pypykatz |
| DPAPI & Credential Vault | dploot, SharpDPAPI, LaZagne, KeeThief, browsers |
| DCSync / DCShadow | Domain hash dumping and rogue DC operations |
| Shadow Copies Abuse | VSS, NTDS.dit, SAM, SYSTEM hive extraction |
For enterprise safety, findings should focus on proof and impact, not unnecessary collection. Use masking and redaction wherever possible. AdStrike includes an environment flag, ADSTRIKE_SHOW_SECRETS, which defaults to false to mask passwords, hashes, and loot in logs and reports unless explicitly enabled.
Lateral movement testing
Lateral movement testing validates whether compromised credentials or privileges can be used to pivot across systems. AdStrike’s lateral movement phase includes:
- Lateral Movement: PSExec, WMIExec, SMBExec, DCOM, Evil-WinRM, and WinRS.
- Coercion Attacks: PrinterBug, PetitPotam, DFSCoerce, and relay paths.
- MSSQL Abuse:
xp_cmdshell, PowerUpSQL, linked servers, and UNC capture. - Password Attacks: Spray, Kerbrute, credential stuffing, and relay capture.
- SCCM / MECM Abuse: NAA credential theft, relay, client push, and AdminService.
The safe testing goal is to confirm whether movement is possible, what controls permit it, and what detections fire—not to maximize access.
Safe Rules of Engagement for Enterprise Environments
Active Directory assessments can affect authentication, production access, endpoint security tools, and business systems. Rules of engagement are therefore not administrative overhead; they are a core safety control.
AdStrike’s documentation opens with an authorization warning: do not run the tool against systems without explicit written permission. It also notes that modules depend on target state, credentials, network reachability, and installed third-party tools, which means results can vary by environment.
Minimum rules of engagement checklist
| Rule | Why It Matters |
|---|---|
| Written authorization | Confirms legal permission and approved scope |
| In-scope domains and forests | Prevents accidental testing of unrelated trusts or business units |
| Approved source IPs and hostnames | Helps defenders distinguish test activity from real incidents |
| Testing windows | Reduces operational impact during business-critical periods |
| Credential handling rules | Controls storage, masking, transfer, and destruction of secrets |
| Escalation approvals | Defines when testers must pause before high-risk validation |
| Detection coordination | Clarifies whether the SOC should be blind, informed, or collaborative |
| Emergency stop process | Enables rapid halt if instability or unexpected impact occurs |
| Reporting classification | Protects sensitive evidence, tickets, hashes, and screenshots |
| Retest process | Defines how remediation will be validated |
Operational safety settings
AdStrike includes several environment flags that can support safer workflows:
| Variable | Default | Purpose from Source Data |
|---|---|---|
| ADSTRIKE_SHOW_SECRETS | false | Masks passwords, hashes, and loot in logs and reports unless explicitly enabled |
| ADSTRIKE_NO_ANIMATION | unset | Disables startup animation for cleaner logs or slow terminals |
| ADSTRIKE_PORT_CHECK | unset | Forces quick nmap AD port check during session setup |
| TGT_AUTO_RENEW | true | Keeps Kerberos renewal behavior enabled where supported |
| ADSTRIKE_OPSEC | normal | Agent mode override: loud, normal, or stealth |
| ADSTRIKE_BH_HOST | unset | BloodHound/Agent hostname override |
| ADSTRIKE_BH_DOMAIN | unset | BloodHound/Agent domain override |
| ADSTRIKE_BH_IP | unset | BloodHound/Agent DC IP override |
Enterprise warning: “Stealth” modes and evasion-oriented modules should be explicitly approved. If the goal is detection validation, the security team may need to know what telemetry should be generated.
How to Document Findings for Security and IT Teams
Good AD penetration testing reports must serve multiple audiences. Executives need identity risk context. Security engineers need attack path evidence and detection gaps. IT and identity administrators need exact remediation steps and validation criteria.
SISA lists key deliverables that provide a strong reporting model:
- Executive summary with identity risk context
- Validated privilege escalation and attack paths
- Trust and delegation abuse analysis
- Detection and response gap assessment
- Prioritized remediation roadmap
- Optional re-assessment after fixes
AdStrike supports report generation in HTML, Markdown, and JSON, which can help teams produce both human-readable reports and machine-ingestible evidence.
Finding structure for AD assessments
Use a consistent finding template.
| Field | What to Include |
|---|---|
| Title | Clear description, such as “Over-permissive ACL enables group membership modification” |
| Affected assets | Domain, OU, group, host, service account, certificate template, or trust |
| Attack path summary | Short explanation of how the issue can be chained |
| Evidence | Redacted command output, screenshots, graph paths, event IDs, or logs |
| Business impact | What access or control could be achieved |
| Detection notes | Whether alerts, logs, or SOC response occurred |
| Remediation | Specific configuration, privilege, delegation, or monitoring change |
| Validation steps | How teams can confirm the fix worked |
| Residual risk | What remains after remediation |
Evidence handling
AD testing evidence can include highly sensitive data. AdStrike’s warning not to commit real engagement data should be treated as a general reporting rule. Keep .env files, output directories, ticket files, hashes, dumps, reports, and captured loot private and redacted.
A useful report should show enough proof to support the finding without exposing unnecessary secrets. For example, a report can show that a password description field contained sensitive material without printing the full value.
Validating Remediation After the Assessment
Remediation validation is where an AD penetration test becomes measurable risk reduction. SISA explicitly lists optional re-assessment after fixes as a deliverable, and its broader approach emphasizes reducing identity-based risk rather than stopping at misconfiguration lists.
Validation should confirm that the specific attack path no longer works and that detection or containment has improved.
Remediation validation workflow
Review the original finding
- Confirm the affected object, path, credential, delegation, trust, or configuration.
Confirm the fix was implemented
- Examples include removing excessive group membership, correcting ACLs, disabling unsafe delegation, remediating certificate template exposure, or improving monitoring.
Repeat the original validation safely
- Use the same approved test account or controlled scenario where possible.
Check for alternate paths
- Removing one edge in an AD graph may not eliminate all routes to the same target.
Validate detection
- Confirm that relevant identity events, Kerberos anomalies, or lateral movement attempts are visible to the security team.
Update the report
- Mark the finding remediated, partially remediated, accepted, or still open.
What to retest by finding category
| Finding Category | Validation Question |
|---|---|
| Credential exposure | Are secrets removed, rotated, masked, or protected from the original access path? |
| Privilege escalation | Can the same user or group still reach the sensitive privilege? |
| Trust abuse | Has the risky trust, SID history, or cross-forest path been constrained? |
| Delegation abuse | Are delegation settings corrected and unnecessary rights removed? |
| ADCS abuse | Are vulnerable certificate templates or CA permissions fixed? |
| Kerberos ticket abuse | Were key rotations or policy changes completed where needed? |
| Lateral movement | Can the original remote access path still be used? |
| Detection gap | Does the SOC now receive actionable telemetry? |
For Kerberos-related compromise involving forged tickets, Undercode’s source data recommends resetting the KRBTGT password twice to invalidate forged tickets. That remediation should be handled carefully by experienced AD administrators because it affects domain authentication behavior.
Bottom Line
Active Directory penetration testing frameworks are most useful when they support a structured identity-risk workflow: scope the engagement, understand architecture, enumerate safely, map attack paths, validate real escalation opportunities, assess detection, and retest remediation.
The strongest source-backed example is AdStrike, which provides a modular AD assessment framework with 58 interactive menu entries, 52 attack modules, shared session state, Kerberos-aware workflows, BloodHound support, Smart Analyst, MCP integration, and reporting in HTML, Markdown, and JSON. However, it is described as a beta/research build, so enterprise teams should validate tool health, dependencies, and rules of engagement before use.
For security and IT teams, the value of an AD assessment is not the number of tools executed. It is the clarity of the attack paths discovered, the quality of evidence, the safety of testing, and the confidence that remediation actually removed the risk.
FAQ
What are Active Directory penetration testing frameworks?
Active Directory penetration testing frameworks are structured toolchains or platforms used to assess AD identity risk. They help testers perform discovery, enumeration, attack path mapping, privilege escalation validation, lateral movement testing, reporting, and remediation validation in an authorized environment.
Which framework is most detailed in the provided research?
The most detailed framework in the source data is AdStrike v5.0. It is described as a modular, terminal-based Active Directory attack framework with 52 attack modules, 4 utilities, 2 management functions, shared session state, Kerberos-aware workflows, BloodHound support, Smart Analyst, MCP server integration, and report generation.
What tools are commonly used in AD penetration testing?
The source data mentions PowerView, Rubeus, BloodHound, Impacket, NetExec / NXC, Certipy, Kerbrute, Responder, Evil-WinRM, Mimikatz, hashcat, john, nmap, masscan, ldapsearch, and related utilities. Each tool supports different phases such as enumeration, Kerberos testing, ADCS assessment, credential exposure validation, and lateral movement testing.
Why is attack path mapping important in AD testing?
Attack path mapping shows how permissions, group memberships, trusts, delegation, credentials, and misconfigurations can be chained. SISA emphasizes validating real escalation paths rather than listing theoretical issues, which makes findings more actionable for security and IT teams.
What should an AD penetration testing report include?
A strong report should include an executive identity-risk summary, validated attack paths, trust and delegation abuse analysis, detection and response gaps, prioritized remediation guidance, and retest results. AdStrike can generate reports in HTML, Markdown, and JSON.
How should remediation be validated after an AD assessment?
Validation should repeat the original test path under approved conditions, confirm that the specific escalation route no longer works, check for alternate paths, and verify improved detection. For high-impact Kerberos issues such as forged ticket exposure, the source data notes that resetting the KRBTGT password twice can invalidate forged tickets.
