Cybersecurity Active Directory Pentesting Resources

Active Directory Pentesting resources 📚

W

Waseem Akram

Researcher, Pentester, Dev

2022-01-09

2 min read

4,820 views

Featured image for Active Directory Pentesting resources 📚

This post contains Active Directory Pentesting resources to prepare for new OSCP (2022) exam.

Youtube/Twitch Videos

Active Directory madness and the Esoteric Cult of Domain Admin! - alh4zr3d

TryHackMe - Advent of Cyber + Active Directory - tib3rius

Advertisement

Common Active Directory Attacks: Back to the Basics of Security Practices - TrustedSec

How to build an Active Directory Lab - The Cyber Mentor

Zero to Hero (Episode 8,9,10) - The Cyber Mentor

Advertisement

Blogs

Top Five Ways I Got Domain Admin on Your Internal Network before Lunch

https://medium.com/@Dmitriy_Area51/active-directory-penetration-testing-d9180bff24a1

https://book.hacktricks.xyz/windows/active-directory-methodology

Advertisement

https://zer1t0.gitlab.io/posts/attacking_ad/

Cheatsheets

https://github.com/S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet

https://infosecwriteups.com/active-directory-penetration-testing-cheatsheet-5f45aa5b44ff

Advertisement

TryHackMe VIP/Free Labs

Active Directory Basics - Easy

Post-Exploitation Basics - Easy

Vulnnet Roasted - Easy

Advertisement

Attacktive Directory - Medium

raz0r black - Medium

Enterprise - Medium

Advertisement

Vulnnet Active - Medium

Zero Logon - Hard

TryHackMe Paid Labs ($10 - $60 / month)

Holo - Hard

Advertisement

Throwback - Easy

HackTheBox Subscription/Free Labs

Forest - Easy

Active - Easy

Advertisement

Fuse - Medium

Cascade - Medium

Monteverde - Medium

Advertisement

Resolute - Medium

Arkham - Medium

Mantis - Hard

Advertisement

APT - Insane

HackTheBox Pro Labs ($95 + $27/month)

Dante - Beginner

Offshore - Intermediate

Advertisement

RastaLabs - Intermediate

Cybernetics - Advanced

APT Labs - Advanced

Advertisement

HackTheBox Academy (Paid)

ActiveDirectory LDAP - Medium

ActiveDirectory Powerview - Medium

ActiveDirectory BloodHound - Medium

Advertisement

CyberSecLabs Walkthrough

Advertisement

Advertisement

Certifications

OSCP - Offensive Security Certified Professional - Offsec - Intermediate

Advertisement

CRTP - Certified Red Team Professional - Pentester Academy - Beginner

CRTE - Certified Red Team Expert - Pentester Academy - Expert

CRTO - Certified Red Team Operator - Zeropoint Security - Intermediate

Advertisement

Courses

Practical Ethical Hacking - TCM Security

Active Directory Pentesting Full Course - Red Team Hacking

Red Team Ethical Hacking - Beginner

Advertisement

Red Team Ethical Hacking - Intermediate

Tools and Repositories

Nishang Mimikatz Kekeo Rubeus Powersploit Powercat PowerUpSQL HeidiSQL

Proving Grounds Playground - Offensive Security

Hutch, Heist & Vault

Advertisement

Cybersecurity Active Directory Pentesting Resources

W

Waseem Akram

Researcher, Pentester, Dev

Cybersecurity expert and educator with a passion for sharing knowledge and helping others stay safe online.

Comments

Comments are currently disabled. Please share your thoughts on social media.

Related Articles

Next.js Middleware Vulnerability – CVE-2025-29927

Cybersecurity Active Directory+2

Next.js Middleware Vulnerability – CVE-2025-29927

Next.js Middleware has a critical flaw (CVE-2025-29927) allowing unauthorized access. Learn affected versions and how to secure your app today

2025-03-259 min read

Bugbounty Resources and Tools📚

Cybersecurity Bug Bounty+5

Bugbounty Resources and Tools📚

Bugbounty Resources to get started with bug bounty hunting and security research. Learn about the tools and resources that can help you...

2024-03-019 min read

Boom Bashed 🧨💥

Cybersecurity Pentesting+2

Boom Bashed 🧨💥

Bashed is a retired HackTheBox machine, rated easy and rightfully. We'll start by finding a hidden web shell to quickly gaining root level access due to misconfigured...

2021-07-168 min read