GOAD Logo

GOAD

0
Free
Visit Website

GOAD is a pentest active directory LAB project that provides pentesters with a vulnerable Active Directory environment to practice attack techniques. The lab includes different versions like GOAD (5 vms, 2 forests, 3 domains), GOAD-Light (3 vms, 1 forest, 2 domains), SCCM (4 vms, 1 forest, 1 domain with Microsoft Configuration Manager), and NHA (a challenge with 5 vms and 2 domains). The lab requires about 77GB of space for VMs and a total of ~115 GB for the entire lab.

FEATURES

ALTERNATIVES

Comprehensive host-survey tool for security checks in C#.

CTF toolkit for rapid exploit development and prototyping.

Adversary emulation framework for testing security measures in network environments.

Pupy is a cross-platform C2 and post-exploitation framework for remote access and control of compromised systems across various operating systems.

A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.

A blog post discussing the often overlooked dangers of CSV injection in applications.

Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.

A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities

PINNED