Vulnerable-AD: Create a vulnerable active directory that allows you to try out most of the attacks in a local project.
- Randomize attacks
- Full coverage of the reported attacks
- you must run the script on DC with Active Directory installed
- Some of the attacks require a client workstation
- Abusing ACLs / ACEs
- AS-REP Roasting
- Abuse DnsAdmins
- Password in the AD User comment
- Password Spraying
- Silver Ticket
- Golden Ticket
- SMB Signing Disabled
You can download the program from here.