TryHackBox/ADKAVEH — reverse-engineered prompt
Reverse engineered prompt
Build me a single PowerShell tool for Active Directory discovery and safe attack simulation that I can use in an authorized lab. I want it to handle basic enumeration of the domain, users, groups, computers, SPNs, AS REP roastable accounts, KRBTGT status, GPOs, and security policies. Then add optional testing actions for Kerberoasting, AS REP roasting, and password spraying, but make the risky stuff require a very obvious confirmation step, and keep password spraying rate limited with delays so it is safer by default. Let me supply credentials with the normal credential prompt, and make it work on Windows PowerShell and PowerShell 7 where possible. Include clear help text, simple switches for the main actions, and output or logs that make it obvious what was only collected versus what was actually tested. Please keep the legal warning very visible and make it clear this is only for environments where I have written permission. If you need to, look up current PowerShell behavior online.
Want more depth? Deep Reverse