Automation & ToolingScripts & Templates

Detecting Kerberoasting with PowerShell and logs

November 14, 2025
Detecting Kerberoasting with PowerShell and Logs Kerberoasting is an Active Directory attack technique where an attacker requests Kerberos service tickets (TGS) for accounts that have Service Principal Names (SPNs), then cracks the ticket offline to recover the service account password. Because it uses legitimate Kerberos flows, the key to detection is understanding what…
Read more
Automation & ToolingPowerShell for AD DS

How to install the PowerShell Active Directory module

July 19, 2022
The Active Directory PowerShell module is part of the Remote Server Administration Tools (RSAT) in all Windows Operating Systems.It is a set of PowerShell cmdlets that imparts flexibility in managing Active Directory. While AD management is possible using the native GUI-based tools like Active Directory Users and Computers console, installing the Windows Active Directory PowerShell Module…
Read more
Automation & ToolingPowerShell for AD DS

Active Directory Object permissions: Step-by-Step guide to managing permissions using GPOs, ADUC, and PowerShell

March 2, 2021
Active Directory Permissions Explained  Users in an Active Directory (AD) network can gain access to resources of the network, whether they are files and folders, or computers and printers. However, not all users need access to all the resources of the network. This is where AD permissions come into play. AD permissions ensure that users of an AD network only gain access to resources that…
Read more