Active Directory Pentesting - Cyber Security Writeups

The Power of Windows Native Command-Line Utilities in Active Directory Pentesting and Internal Red Teaming

January 3, 2026 · khukuririmal

Active Directory Pentesting has evolved significantly over the last few years. Gone are the days when attackers or red teamers could reliably depend on dropping Python tools, importing PowerShell scripts, or executing offensive scripts/tools without resistance. Modern enterprise environments are heavily defended with EDR, Microsoft Defender for Endpoint, AMSI, Attack Surface Reduction (ASR) rules, DLP […]

Purple Knight: A Modern Active Directory Security Health Check for Hybrid Enterprises

December 18, 2025 · khukuririmal

Active Directory (AD) remains the backbone of identity, authentication, and authorization in most enterprise environments. Despite years of awareness around AD attacks—Kerberoasting, Pass-the-Hash, ACL abuse, delegation misconfigurations—many organizations still operate with legacy misconfigurations and excessive privileges that quietly expand their attack surface.This is where Purple Knight, a free Active Directory security assessment tool by Semperis, […]