performing-active-directory-penetration-test

This script is an offensive AD pentest automation tool that shells out to known offensive utilities (impacket, bloodhound-python, certipy, netexec). The code itself does not implement hidden backdoors or network exfiltration, but it handles credentials insecurely (passing them on command line) and will perform sensitive and potentially destructive AD enumeration and hash collection when run with valid credentials. It is dual-use: legitimate for authorized security testing, but dangerous if used by unauthorized actors. Recommend auditing usage, avoiding passing plaintext credentials on command-line (use more secure methods supported by tools), and restrict execution to authorized personnel and environments.

High-risk offensive security skill. Its capabilities are aligned with its stated AD penetration-testing purpose, but that purpose itself grants an AI agent explicit exploit, credential-extraction, privilege-escalation, and persistence behavior against Active Directory environments. No clear third-party exfiltration or stealth is shown, so this is better classified as dangerous/vulnerable rather than confirmed malware.