Active Directory

Seatbelt

Local Windows security enumeration.

windowspost-exploitation

seatbelt — terminal

$ Seatbelt.exe -group=all

What it does

Seatbelt runs a battery of host "safety checks" that gather security-relevant configuration and artifacts from a Windows system. It's used for local situational awareness and privilege-escalation hunting.

Source

https://github.com/GhostPack/Seatbelt ↗

More Active Directory tools

CrackMapExecSwiss-army knife for AD network post-exploitation.ImpacketPython toolkit of network-protocol scripts.GetNPUsers.pyAS-REP roasting via Impacket.enum4linux-ngSMB and Windows enumeration.

Need hosted scanning instead of local tooling?

Run a scan in the browser →