Automate Active Directory pentesting. From DNS to Domain Admin.

Docs | Discord | Website

---

🎬 Demo

Auto-pwns HTB Forest in ~3 minutes

---

🚀 Quick Start

pip install adscan
adscan install
adscan start

Full installation guide & docs at adscanpro.com/docs

---

✨ Features

LITE (Free, Source Available) Everything a pentester could do manually, 10x faster: ✅ Three operation modes (automatic/semi-auto/manual) ✅ DNS, LDAP, SMB, Kerberos enumeration ✅ AS-REP Roasting & Kerberoasting ✅ Password spraying ✅ BloodHound collection & analysis ✅ Credential harvesting (SAM, LSA, DCSync) ✅ ADCS detection & template enumeration ✅ GPP passwords & CVE enumeration ✅ Export to TXT/JSON ✅ Workspace & evidence management

PRO What nobody can do manually in reasonable time: 🎯 Algorithmic attack graph generation 🎯 Auto-exploitation chains (DNS to DA) 🎯 ADCS ESC1-13 auto-exploitation 🎯 MITRE-mapped Word/PDF reports 🎯 Multi-domain trust spidering 🎯 Advanced privilege escalation chains 🎯 Priority enterprise support Full comparison | Learn more

---

📋 Requirements

OS	Linux (Debian/Ubuntu/Kali)
Docker	Docker Engine + Compose
Privileges	docker group or sudo
Network	Internet (pull images) + target network

---

📜 License

Source available under the Business Source License 1.1.

• Use freely for pentesting (personal or paid engagements)
• Read, modify, and redistribute the source code
• Cannot create a competing commercial product
• Converts to Apache 2.0 on 2029-02-01

---

💬 Community

Enterprise support: hello@adscanpro.com

---

(c) 2024-2026 Yeray Martin Dominguez | adscanpro.com