Stats
Actions
Tags
From akira
Redirects Active Directory attack queries to redteam skill via /redteam --focus=ad, prioritizing BloodHound analysis, Kerberoasting, AS-REP roasting, DCSync, PtH/PtT, delegation abuse, GPO/ACL exploitation, and domain compromise.
How this skill is triggered — by the user, by Claude, or both
Slash command
/akira:ad-attacksThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
AD attack TTPs have been consolidated into the **redteam** skill, which is the canonical source for all AD, post-exploitation, lateral movement, and APT simulation techniques.
AD attack TTPs have been consolidated into the redteam skill, which is the canonical source for all AD, post-exploitation, lateral movement, and APT simulation techniques.
Immediately invoke:
/redteam <target> --focus=ad
The --focus=ad flag tells redteam to prioritize:
All techniques are documented in ~/.claude/skills/redteam/SKILL.md under Classes RT04, RT05, RT05b, RT05c.
For full APT kill chain (C2, LotL, AMSI bypass, persistence, defense evasion, cloud APT, exfil, OPSEC) run /redteam <target> without the focus flag after obtaining a foothold.
npx claudepluginhub kalpmodi/akiraGuides red team attacks on Microsoft Active Directory with reconnaissance, credential harvesting, Kerberos attacks, lateral movement, privilege escalation using BloodHound, Impacket, Mimikatz.
Active Directory red team methodology covering recon (BloodHound, PowerView), credential abuse (Kerberoasting, NTLM relay), escalation, lateral movement, persistence, ADCS abuse, and Defender evasion.
Enumerates Active Directory objects, discovers attack paths with BloodHound, exploits Kerberos weaknesses, and escalates privileges via ADCS/DCSync to demonstrate domain compromise.