https://github.com/adscanpro/adscan
ADscan is a pentesting tool focused on automating collection, enumeration and common attack paths in Active Directory. It provides an interactive CLI with a wide range of commands to streamline internal audits and AD-focused pentests.
https://github.com/adscanpro/adscan
active-directory adscan bloodhound pentest-tool pentesting
Last synced: about 2 months ago
JSON representation
ADscan is a pentesting tool focused on automating collection, enumeration and common attack paths in Active Directory. It provides an interactive CLI with a wide range of commands to streamline internal audits and AD-focused pentests.
- Host: GitHub
- URL: https://github.com/adscanpro/adscan
- Owner: ADScanPro
- License: other
- Created: 2025-06-27T15:25:36.000Z (10 months ago)
- Default Branch: main
- Last Pushed: 2026-02-26T21:39:34.000Z (2 months ago)
- Last Synced: 2026-02-27T00:41:05.737Z (2 months ago)
- Topics: active-directory, adscan, bloodhound, pentest-tool, pentesting
- Language: Python
- Homepage: https://www.adscanpro.com/docs
- Size: 1.51 MB
- Stars: 69
- Watchers: 1
- Forks: 12
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
[](https://github.com/ADscanPro/adscan/releases)
[](https://pepy.tech/projects/adscan)
[](https://github.com/ADscanPro/adscan/blob/main/LICENSE)
[](https://github.com/ADscanPro/adscan)
[](https://discord.com/invite/fXBR3P8H74)
**Automate Active Directory pentesting. From DNS to Domain Admin.**
**[Docs](https://adscanpro.com/docs?utm_source=github&utm_medium=readme&utm_campaign=docs_cta)** | [Discord](https://discord.com/invite/fXBR3P8H74) | [Website](https://adscanpro.com)
---
## ๐ฌ Demo
[](https://asciinema.org/a/734180?autoplay=1)
_Auto-pwns **HTB Forest** in ~3 minutes_
---
## ๐ Quick Start
```bash
pipx install adscan
adscan install
adscan start
```
> **Full installation guide & docs** at [adscanpro.com/docs](https://adscanpro.com/docs?utm_source=github&utm_medium=readme&utm_campaign=install_cta)
## ๐งช Developer Setup (uv)
For local development in this repository:
```bash
uv sync --extra dev
uv run adscan --help
uv run adscan version
```
Quality checks:
```bash
uv run ruff check adscan_core adscan_launcher adscan_internal
uv run pytest -m unit
uv run python -m build
```
---
## โจ Features
### LITE (Free, Source Available)
**Everything a pentester could do manually, 10x faster:**
- โ
Three operation modes (automatic/semi-auto/manual)
- โ
DNS, LDAP, SMB, Kerberos enumeration
- โ
AS-REP Roasting & Kerberoasting
- โ
Password spraying
- โ
BloodHound collection & analysis
- โ
Credential harvesting (SAM, LSA, DCSync)
- โ
ADCS detection & template enumeration
- โ
GPP passwords & CVE enumeration
- โ
Export to TXT/JSON
- โ
Workspace & evidence management
### PRO
**What nobody can do manually in reasonable time:**
- ๐ฏ Algorithmic attack graph generation
- ๐ฏ Auto-exploitation chains (DNS to DA)
- ๐ฏ ADCS ESC1-13 auto-exploitation
- ๐ฏ MITRE-mapped Word/PDF reports
- ๐ฏ Multi-domain trust spidering
- ๐ฏ Advanced privilege escalation chains
- ๐ฏ Priority enterprise support
[Full comparison](https://adscanpro.com/docs/lite-vs-pro) | [Learn more](https://adscanpro.com?utm_source=github&utm_medium=readme&utm_campaign=pro_cta)
---
## ๐ Requirements
| | |
|---|---|
| **OS** | Linux (Debian/Ubuntu/Kali) |
| **Docker** | Docker Engine + Compose |
| **Privileges** | `docker` group or `sudo` |
| **Network** | Internet (pull images) + target network |
---
## ๐ License
Source available under the [Business Source License 1.1](LICENSE).
- **Use freely** for pentesting (personal or paid engagements)
- **Read, modify, and redistribute** the source code
- **Cannot** create a competing commercial product
- **Converts to Apache 2.0** on 2029-02-01
---
## ๐ฌ Community
[](https://discord.com/invite/fXBR3P8H74)
[](https://github.com/ADscanPro/adscan/issues)
Enterprise support: [hello@adscanpro.com](mailto:hello@adscanpro.com)
---
(c) 2024-2026 Yeray Martin Dominguez | [adscanpro.com](https://adscanpro.com)