🛠️ Featured Tools
🔧 AD Auditor Pro
Complete GUI tool for GPO cleanup, privileged account mapping, and reporting.
🎯 GPO Hunter Lite
Fast GPO anomaly scanner — no module required. Lightweight & CLI-ready.
red team sidhistory, gpo cleanup, ntlm powershell, active directory audit
🧭 Privileged Mapper
Maps orphaned T1/T2 accounts and finds AD inconsistencies quickly.
📊 LogonTracer Parser
Parses EventID 4624/4625 for user session tracking & forensic auditing.
🔄 PS-ResetDC
Resets stale replication states & triggers SYSVOL refresh (For Domain Controllers only) .
🧹 SIDHistory Cleaner
Detects and removes legacy SIDHistory entries to harden migration hygiene (To use very carefully, it has a serious impact on the trust) .
🧪 Tier Escalation Tracker (Tier0)
Detects privilege boundary violations by analyzing T0, T1, and T2 account memberships. Flags risky delegation or lateral access vectors.
🧠 GPO Attack Surface Analyzer
Audits Group Policy Objects for misconfigurations, excessive permissions, and inheritance vulnerabilities that expose the domain.
🌐 ForestTrustScope.ps1
Scans for misconfigured cross-domain trust paths and lateral movement opportunities via SIDHistory, adminSDHolder, and inter-forest ACLs.