Automated Active Directory attack chains — Kerberoasting, AS-REP roasting, DCSync, pass-the-hash, pass-the-ticket, BloodHound-style privilege escalation path analysis and GPO abuse — all in a single tool built for the modern enterprise pentest.
🏴
Kerberoasting Automation
Full SPN enumeration and ticket extraction with integrated hashcat-compatible output.
🔗
Attack Path Analysis
Graph-based privilege escalation path discovery — find the shortest path to Domain Admin.
🎭
Pass-the-Ticket / Hash
PTH and PTT attack execution with credential forwarding and lateral movement support.
📋
GPO & ACL Abuse
Identifies misconfigured Group Policy Objects and ACL misconfigurations leading to privilege escalation.
🔐
DCSync Attack
Automated credential replication abuse to extract domain hashes without running code on the DC.
📄
AD Pentest Report
One-click professional report with attack chains, evidence and risk-rated findings.