Assumed Compromise is a GitHub organization designed to provide resources, links, references, and a solid checklist for conducting assumed compromise style penetration testing.
- Reconnaissance
- System Analysis and Situational Awareness
- Egress and Data Exfiltration Checks
- Command and Control
- Network Resource Access and Analysis
- Credential Attacks
- Active Directory Enumeration, Configuration Analysis, and Attack Paths
- Coercion, Relay, and Network Protocol Attacks
- Active Directory Certificate Services
- Microsoft Endpoint Configuration Manager
- Other Organizational Risk Analysis
Warning
Unauthorized computer hacking is a federal and state crime in all 50 states in the United States and laws vary by countries across the globe.
