Skip to content
/ AD-Strider Public

Detect connections between Bloodhound objects wich are considered illegal by AD Tiering from Microsoft

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

PatchRequest/AD-Strider

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
.github/workflows
.github/workflows
 
 
.gitignore
.gitignore
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
config.json
config.json
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

AD Strider

A security automation tool to detect misconfigurations in an active directory by analyzing data from Bloodhound

Configuration

The config file "config.json" contains a two list of all connections between AD-Objects. Each list is for a specific direction (T1 -> T0 or T0 -> T1) If the value is set to true the connection will be marked as misconfiguration

Example:

A User from Tier1 should not have admin permissions for a Tier0 object

[...]
"IntoT0": {
        "AdminTo": true,
[...]

A User from Tier0 is allowed to have admin permissions for a Tier1 object

[...]
"IntoT1": {
        "AdminTo": false,
[...]

Setup

Download the latest release for your platform from Github here or build it on your own with

go build .

Usage

Licence

About

Detect connections between Bloodhound objects wich are considered illegal by AD Tiering from Microsoft

Topics

go security security-audit active-directory bloodhound security-automation tier-control

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Languages