blob: bdff75ab6ad4151aa23b402f2ec9feb44774ef5e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
---
# **ADUtilities**
A growing collection of tools, scripts, and resources designed to support **Active Directory (AD) pentesting**, troubleshooting, and environment assessments.
This repository aims to provide practical, ready-to-use utilities that help streamline common tasks encountered during AD security engagements.
## **Current Tools**
### 🔧 **TimeFix – AD Clock Skew Sync Script**
Two lightweight Bash and Python scripts that fetches the time from a target Windows host (via WinRM HTTP headers) and synchronizes your Linux machine’s clock.
Useful for resolving **Kerberos clock-skew errors (KRB_AP_ERR_SKEW)** during pentesting.
### 🔧 **Resurrect – Remotely Find and Restore TombStoned Objects in AD**
A Python tool for remotely discovering and restoring deleted Active Directory objects through LDAP, supporting multiple authentication methods including Kerberos.
Useful for **AD pentesting and recovery operations** when you need to interact with the Deleted Objects container without direct DC access.
### 🔧 **auto_ntlm_reflection – Automate the process of exploitating CVE-2025-33073 (NTLM Reflection)**
A python script that automates the exploitation of CVE-2025-33073 (NTLM Reflection). It can add the dns record, perform coercion, and relay the authentication seamlessly.
## **Roadmap**
More tools will be added soon, including:
* AD enumeration helpers
* Credential & ticket utilities
* Automation shortcuts for common AD operations
* Misc. red-team friendly scripts
Stay tuned — this repo will grow into a handy toolkit for anyone working with AD security.
---
|
