Skill

system

Tests system security with Active Directory attacks (Kerberoasting, DCSync), Linux/Windows privilege escalation (SUID, kernel exploits), and exploit development (buffer overflow, ROP). Useful for pentesting.

Linux

security

testing

npx claudepluginhub transilienceai/communitytools

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Test system-level security including Active Directory, privilege escalation, and exploit development.

Supporting Assets

reference/format-string-exploitation.mdreference/heap-exploitation.mdreference/system-exploitation.md

SKILL.md

Similar Skills

privilege-escalation-methods

36.4k

Lists privilege escalation techniques from low-priv user to root/admin on Linux and Windows systems for pentesting post-exploitation.

antigravity-awesome-skills

performing-privilege-escalation-on-linux

5.9k

Guides Linux privilege escalation for red teams: SUID binaries, sudo misconfigs, kernel exploits, cron jobs, capabilities. For authorized pentesting and auditing.

5 files

cybersecurity-skills

ad-attacks

Redirects Active Directory attack queries to redteam skill via /redteam --focus=ad, prioritizing BloodHound analysis, Kerberoasting, AS-REP roasting, DCSync, PtH/PtT, delegation abuse, GPO/ACL exploitation, and domain compromise.

akira

Stats

Stars223

Forks44

Last CommitApr 14, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

System

Test system-level security including Active Directory, privilege escalation, and exploit development.

Techniques

Type

Key Vectors

Active Directory

Kerberoasting, AS-REP roasting, DCSync, PtH, Golden/RODC Ticket, RBCD, ACL abuse, KeyList, Shadow Credentials, ADCS (ESC1-9/16)

Privilege Escalation

SUID/sudo abuse, kernel exploits, service misconfig, token manipulation

Exploit Development

Buffer overflow, format string, ROP chains, shellcode, heap exploitation

Workflow

Enumerate system and domain information

Identify escalation paths and misconfigurations

Exploit with appropriate techniques

Demonstrate impact (domain admin, root access)

Document attack chain with evidence

Reference

reference/system-exploitation.md - AD attacks, privilege escalation, exploit development techniques

reference/format-string-exploitation.md - Format string read/write primitives, architecture differences, mitigation bypass

reference/heap-exploitation.md - Modern glibc heap techniques (tcache poison, unsorted bin leak, environ stack leak, ROP)

System

Test system-level security including Active Directory, privilege escalation, and exploit development.

Techniques

Type	Key Vectors
Active Directory	Kerberoasting, AS-REP roasting, DCSync, PtH, Golden/RODC Ticket, RBCD, ACL abuse, KeyList, Shadow Credentials, ADCS (ESC1-9/16)
Privilege Escalation	SUID/sudo abuse, kernel exploits, service misconfig, token manipulation
Exploit Development	Buffer overflow, format string, ROP chains, shellcode, heap exploitation

Workflow

Enumerate system and domain information
Identify escalation paths and misconfigurations
Exploit with appropriate techniques
Demonstrate impact (domain admin, root access)
Document attack chain with evidence

Reference

reference/system-exploitation.md - AD attacks, privilege escalation, exploit development techniques
reference/format-string-exploitation.md - Format string read/write primitives, architecture differences, mitigation bypass
reference/heap-exploitation.md - Modern glibc heap techniques (tcache poison, unsorted bin leak, environ stack leak, ROP)