PlumHound and PingCastle: Tools for Active Directory Security

By /

👉 What is PlumHound?

PlumHound wraps BloodHoundAD’s Neo4J backend cypher queries into actionable reports, helping security teams identify and harden Active Directory vulnerabilities. Below are the commands to set up PlumHound:


<h1>Clone PlumHound repository</h1>

git clone https://github.com/PlumHound/PlumHound.git

<h1>Navigate to the PlumHound directory</h1>

cd PlumHound

<h1>Install dependencies</h1>

pip install -r requirements.txt

<h1>Run PlumHound</h1>

python3 PlumHound.py

👉 What is PingCastle?

PingCastle assesses Active Directory security levels using a risk assessment and maturity framework. Here’s how to use PingCastle:


<h1>Download PingCastle</h1>

wget https://github.com/vletoux/pingcastle/releases/download/2.10.0.1/PingCastle_2.10.0.1.zip

<h1>Unzip the file</h1>

unzip PingCastle_2.10.0.1.zip

<h1>Run PingCastle</h1>

./PingCastle.exe --healthcheck --server <your-domain-controller>

What Undercode Say

Active Directory (AD) security is critical for organizations, and tools like PlumHound and PingCastle provide invaluable insights into vulnerabilities. PlumHound leverages BloodHound’s Neo4J backend to generate detailed reports, while PingCastle focuses on risk assessment and maturity frameworks. Both tools are essential for penetration testers and cybersecurity analysts.

To further enhance your AD security, consider these additional Linux and Windows commands:

  • Linux Commands:
    </li>
</ul>

<h1>Check for open ports on a domain controller</h1>

nmap -p 389,636 <domain-controller-ip>

<h1>Test LDAP connectivity</h1>

ldapsearch -x -h <domain-controller-ip> -b "dc=example,dc=com"
    • Windows Commands:
      </li>
</ul>

<h1>List all domain users</h1>

Get-ADUser -Filter *

<h1>Check for Group Policy issues</h1>

gpresult /h report.html

      For more advanced AD security practices, explore these resources:
      BloodHound Documentation
      PingCastle GitHub Repository

      By combining these tools and commands, you can significantly improve your organization’s AD security posture. Keep learning, practicing, and sharing knowledge to stay ahead in the cybersecurity field.

      References:

      Hackers Feeds, Undercode AIFeatured Image

Related Posts:

Scroll to Top