Skip to content
/ adwsdomaindump Public

Active Directory information dumper via ADWS for evasion purposes.

License

MIT license
160 stars 10 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mverschu/adwsdomaindump

BranchesTags

Repository files navigation

ADWSDomainDump

Active Directory information dumper via ADWS (Active Directory Web Services).
image

Install

Recommended install:

pipx install git+https://github.com/mverschu/adwsdomaindump
# or
pipx install .

Usage

adwsdomaindump -u 'thewoods.local\mathijs.verschuuren' -p 'password' -n 10.10.10.1 dc01.thewoods.local
[*] Connecting to ADWS host...
[+] ADWS port 9389 is reachable
[*] Binding to ADWS host
[+] Bind OK
[*] Starting domain dump
[+] Domain dump finished

Use --force to skip the ADWS port connectivity check.

Evasion

Currently tested against:

EDR Bypassed
Microsoft Defender for Endpoint Yes
CrowdStrike Falcon Yes

Credits

This project is a fork/adaptation of ldapdomaindump by Dirk-jan Mollema, converted to use ADWS instead of LDAP.

Original work: Copyright (c) 2017 Dirk-jan Mollema

License

MIT

About

Active Directory information dumper via ADWS for evasion purposes.

Topics

tool active-directory python3 pentesting adws

Resources

Readme

License

MIT license
Activity

Stars

160 stars

Watchers

0 watching

Forks

10 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 12

Languages