Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bc-security/deathstarplugin

Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common offensive tactics, techniques, and procedures (TTPs).
https://github.com/bc-security/deathstarplugin

Last synced: 5 days ago
JSON representation

Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common offensive tactics, techniques, and procedures (TTPs).

Host: GitHub
URL: https://github.com/bc-security/deathstarplugin
Owner: BC-SECURITY
License: gpl-3.0
Created: 2023-05-31T18:38:28.000Z (over 1 year ago)
Default Branch: main
Last Pushed: 2024-01-07T21:17:33.000Z (10 months ago)
Last Synced: 2024-05-01T09:45:00.019Z (7 months ago)
Language: Python
Homepage:
Size: 26.4 KB
Stars: 15
Watchers: 1
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# DeathStar

DeathStar

Deathstar is an [Empire](https://github.com/BC-SECURITY/Empire) plugin that is an adaption of [DeathStar](https://github.com/byt3bl33d3r/DeathStar) that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common offensive tactics, techniques, and procedures (TTPs).

## Motivation

The primary motivation behind the creation of this was to demonstrate how a lot of the commonly exploited Active Directory misconfiguration can be chained together to gain Administrator-level privileges in an automated fashion (akin to a worm).

While many more things could be taken advantage of (including server-side vulnerabilities such as MS17-010), DeathStar mainly focuses on exploiting misconfigurations/vulnerabilities that have a very low probability of causing any system/network stability issues.

Additionally, it now supports Active Directory environments with multiple Forests/Domains. It has an "Active Monitoring" feature, which allows it to adapt its attack path based on real-time changes in the network.

## Screenshots
![image](https://github.com/BC-SECURITY/DeathStarPlugin/assets/20302208/81b09dc5-9ade-4433-a480-d368d4f5846d)
![image](https://github.com/BC-SECURITY/DeathStarPlugin/assets/20302208/aca23e6e-ad38-497c-aa97-4f6ff69446ec)

## Acknowledgments
This project is built upon [DeathStar by byt3bl33d3r](https://github.com/byt3bl33d3r/DeathStar)