creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-12 14:14:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/configuring-active-directory-tiered-model/references/api-reference.md
T
mukul975 c21af3347e Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal 
- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
2026-03-11 00:22:12 +01:00

1.6 KiB
Raw Blame History

Active Directory Tiered Model — API Reference

Libraries

Library Install Purpose
ldap3 pip install ldap3 LDAP queries for AD group and account enumeration
pyad pip install pyad Windows AD object manipulation

Key ldap3 Methods

Method Description
Connection(server, user, password, authentication=NTLM) NTLM-authenticated LDAP bind
conn.search(base_dn, filter, attributes) Search AD objects
conn.entries Result entries from search

AD Tier Definitions (Microsoft ESAE)

Tier Assets Admin Accounts
Tier 0 Domain Controllers, AD, PKI, ADFS Domain Admins, Enterprise Admins
Tier 1 Member servers, applications Server admins, app admins
Tier 2 Workstations, end users Help desk, workstation admins

Critical AD Groups (Tier 0)

Group SID Suffix
Domain Admins -512
Enterprise Admins -519
Schema Admins -518
Administrators -544
Account Operators -548
Backup Operators -551

UserAccountControl Flags

Flag Value Description
ACCOUNTDISABLE 0x2 Account is disabled
DONT_EXPIRE_PASSWORD 0x10000 Password never expires
NOT_DELEGATED 0x100000 Account is sensitive for delegation

External References

Reference in New Issue View Git Blame Copy Permalink