← Back to Skills Marketplace
Pentest Active Directory
by
Muhammad Mazhar Saeed
· GitHub ↗
· v0.1.0
829
Downloads
1
Stars
4
Active Installs
1
Versions
Install in OpenClaw
/install pentest-active-directory
Description
Assess Active Directory identity attack paths including roasting, relay, and delegation abuse.
Usage Guidance
This skill appears to be an AD pentest orchestration tool that properly emphasizes scope checks and requires explicit authorization for live runs, but exercise caution before using it against real targets. Actions to take before installing or running:
- Inspect the shared helper module (autonomous-pentester/shared/pentest_common or equivalent) referenced by the script; unknown code there could perform network, file, or credential operations.
- Run the tool in --dry-run mode first and review the generated artifacts.
- Confirm you have an isolated test environment and written authorization before supplying --i-have-authorization or removing --dry-run.
- Verify you have a trusted Python runtime and decide whether you need the external pentest binaries (BloodHound/SharpHound/Impacket/etc.) that the references imply; these are not installed automatically.
- If you plan to let an autonomous agent invoke this skill, understand the agent could run it without further prompts; restrict autonomous invocation until you’ve audited the shared code.
Capability Analysis
Type: OpenClaw Skill
Name: pentest-active-directory
Version: 0.1.0
This skill bundle is benign. It is a well-structured template for an Active Directory pentesting skill, emphasizing strong security controls like explicit authorization (`--i-have-authorization`), scope validation, and a dry-run mode. The `active_directory.py` script, despite its name, does not execute any actual offensive tools or perform AD attacks; it only generates placeholder findings and output files. There is no evidence of data exfiltration, malicious execution, persistence, or prompt injection attempts against the agent. The listed pentesting tools in `references/tools.md` are not invoked by this skill.
Capability Assessment
Purpose & Capability
Name/description align with files and references (BloodHound, SharpHound, Impacket, mimikatz, etc.). The included script is an orchestrator that produces canonical artifacts and enforces scope/authorization. Minor mismatch: metadata lists no required binaries while the skill clearly needs a Python runtime and (for real testing) external pentest tools; this is plausible but should be declared.
Instruction Scope
SKILL.md and the script enforce scope validation, dry-run behavior, and explicit --i-have-authorization for live runs, which is good. However the runtime script imports pentest_common from a shared path (skills/autonomous-pentester/shared) that is not included in the package metadata shown; load_payload, validate_scope and other helpers are opaque here and could perform additional file/network/credential access. You should inspect that shared module before running non-dry-run executions.
Install Mechanism
No install spec (instruction-only with a Python script) — lowest installer risk. Nothing is downloaded or written by an installer step in the registry manifest.
Credentials
No environment variables, credentials, or config paths are requested in metadata or SKILL.md. This is conservative, but real AD pentesting would normally require credentials and external tools; this skill instead expects input payloads and a shared helper. Confirm where credentials or tool invocations would actually occur before granting access.
Persistence & Privilege
always:false and no indications the skill modifies other skills or system-wide settings. The skill writes output artifacts when run (unless dry-run) but does not request permanent presence or elevated platform privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install pentest-active-directory - After installation, invoke the skill by name or use
/pentest-active-directory - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release of pentest-active-directory skill.
- Assesses Active Directory attack paths, including roasting, relay, and delegation abuse.
- Enforces validation of scope and authorization before active actions.
- Supports dry-run mode and requires explicit authorization for live execution.
- Produces findings, attack paths, and report artifacts in standardized formats.
- Aligns with PTES, MITRE, OWASP WSTG, and NIST SP 800-115 testing standards.
Metadata
Frequently Asked Questions
What is Pentest Active Directory?
Assess Active Directory identity attack paths including roasting, relay, and delegation abuse. It is an AI Agent Skill for Claude Code / OpenClaw, with 829 downloads so far.
How do I install Pentest Active Directory?
Run "/install pentest-active-directory" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Pentest Active Directory free?
Yes, Pentest Active Directory is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Pentest Active Directory support?
Pentest Active Directory is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Pentest Active Directory?
It is built and maintained by Muhammad Mazhar Saeed (@0x-professor); the current version is v0.1.0.
More Skills