Articles
Go back to application
Articles
Go back to application
Platform Fundamentals
Getting Started
Account Management
User Management
AI
AI Overview
AI Inbox
AI Agents
Knowledge Base
Schedules
Human in the Loop
Workspaces Templates
Running a pentest from a templateWeb Application PentestNetwork External PentestNetwork Internal PentestAPI Security TestingCreating a Blank WorkspaceCode Review Assessment via TemplateThreat Modeling TemplateActive Directory Pentest TemplateAttack Surface Monitoring Template
Logs
AI Pentest
Getting started
Workspaces
Configuration
Operations
Asset Management
Asset Basics
Assets Operations
Asset Customization
Vulnerability Management
Vulnerability Basics
Vulnerability Operations
Vulnerability Organization
Integrations & Connectors
Credential Management
Connector Setup
Synchronization
Scanning and Assesssment
Scanning Operations
Security Analysis
Workflow Configuration
Engagemet Management
Enagagement Basic
Enagagement Operations
Workbook
Pentesting as a Service
PTaaS Basics
Vulnerability Submission
Task Management
Task Basics
Task Automation
Reporting and Documentation
Reports
Documentation
Attack Surface Management
Strobes Attack Surface Management (ASM)

Active Directory Pentest Template

The Active Directory Pentest template helps security teams assess the security posture of their Active Directory environment by identifying misconfigurations, privilege escalation paths, weak permissions, exposed credentials, and potential attack vectors.

The assessment follows a structured methodology to enumerate domain objects, analyze permissions, identify security weaknesses, and provide remediation recommendations.

Accessing the Active Directory Pentest Template

  1. Navigate to AI from the main navigation menu.
  2. Click Workspaces.

  3. Select New Workspace.

Step 1: Select the Active Directory Pentest Template

  1. Browse the available assessment templates.
  2. Locate Active Directory Pentest.
  3. Click the template card to view additional information.

The template provides:

  • Assessment overview
  • Estimated duration
  • Number of phases
  • Expected deliverables

What the Assessment Covers

The assessment typically performs:

  • Domain enumeration
  • User and group analysis
  • Trust relationship validation
  • Privilege escalation path discovery
  • Access control review
  • Security misconfiguration analysis
  • Credential exposure checks

Deliverables

The assessment generates:

  • Security Findings
  • Attack Path Analysis
  • Privilege Escalation Opportunities
  • Risk Ratings
  • Remediation Recommendations
  1. Click Use this Template.

Step 2: Enter the Workspace Name

After selecting the template, the wizard moves to the Scope stage.

  1. Locate the Workspace Name field.
  2. Enter a descriptive name for the assessment.

Example:

Active Directory Pentest - Production Domain

Using a descriptive workspace name makes it easier to identify assessments later.

Step 3: Select the Target Environment

Choose the environment that contains the Active Directory infrastructure you want to assess.

  1. Locate the environment selection section.
  2. Select the appropriate environment.
  3. Verify the selected target.

Examples:

  • Production Domain
  • Staging Domain
  • Corporate Directory
  • Internal Network

Step 4: Select the Domain Controller

The assessment requires information about the Active Directory environment.

  1. Locate the Domain Controller field.
  2. Enter or select the target domain controller.
  3. Verify the hostname or IP address.

Examples:

dc01.company.local

or

10.10.10.20

The selected domain controller will be used during the enumeration process.

Step 5: Configure Assessment Credentials

Credentials are required for authenticated Active Directory analysis.

  1. Locate the Credentials section.
  2. Select an existing credential.
  3. Verify that the credential has the required permissions.

The assessment may use:

  • Domain User Accounts
  • Service Accounts
  • Read-only Accounts
  • Privileged Accounts (if required)

Best Practice

Use a dedicated assessment account whenever possible rather than a personal user account.

Step 6: Select an AI Model

The AI Model determines the reasoning engine used during the assessment.

  1. Open the Model dropdown.
  2. Review the available models.
  3. Select the model best suited for the assessment.

The selected model impacts:

  • Analysis quality
  • Attack path identification
  • Risk prioritization
  • Recommendation accuracy

Step 7: Select the Assessment Environment

The execution environment determines how the AI agent performs the assessment.

  1. Open the environment selection dropdown.
  2. Choose the preferred environment.
  3. Confirm the selected option.

The environment controls:

  • Assessment execution
  • Tool availability
  • Analysis workflow

Step 8: Configure the Assessment Schedule

Select how frequently the assessment should run.

One-Time Assessment

Use this option when:

  • Performing an initial review
  • Conducting a point-in-time assessment
  • Validating recent changes

Monthly Assessment

Use this option when:

  • Monitoring Active Directory continuously
  • Tracking security posture improvements
  • Validating remediation efforts
  1. Select the preferred schedule.
  2. Review the execution frequency.

Step 9: Configure Execution Mode

Choose how the AI agent progresses through the assessment.

Autonomous Mode

The AI automatically completes all assessment phases.

Recommended for:

  • Faster assessments
  • Standard security reviews

Human-in-the-Loop Mode

The AI pauses for approval between phases.

Recommended for:

  • Controlled execution
  • Manual validation
  • Sensitive environments
  1. Select the preferred execution mode.
  2. Review the workflow behavior.

Step 10: Configure Auto-Remediation (Optional)

Auto-remediation settings determine whether remediation workflows can be generated automatically.

  1. Locate the Auto-remediation option.
  2. Enable or disable the feature.
  3. Review the selected configuration.

Step 11: Review the Assessment Configuration

After completing the configuration, click Review.

The Review page displays:

Workspace Details

  • Workspace Name
  • Selected Template

Scope Details

  • Environment
  • Domain Controller
  • Credentials

Configuration

  • AI Model
  • Execution Environment
  • Schedule
  • Execution Mode

Automation Settings

  • Auto-remediation Status

Carefully review all settings before launching the assessment.

Step 12: Launch the Active Directory Pentest

Once all settings have been verified:

  1. Click Create & Launch.
  2. The workspace is created.
  3. The assessment begins automatically.

During execution, the platform performs:

  • Active Directory Enumeration
  • User and Group Analysis
  • Permission Mapping
  • Trust Relationship Analysis
  • Attack Path Discovery
  • Risk Assessment
  • Remediation Planning

Notes

  • Ensure the selected credentials have access to the target domain.
  • Verify the domain controller information before launching the assessment.
  • Human-in-the-Loop mode is recommended for production environments.
  • Monthly assessments help identify newly introduced risks and configuration changes


Was this article helpful?

Powered by Product Fruits