Search
Collection
Category
Tag
Blog
Pricing
Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

AISecKit

Curated AI security tools & LLM safety resources for cybersecurity professionals

Product

Search
Collection
Category
Tag

Resources

Blog
Pricing
Submit

Tools

🔥Marathons Tools

Company

About Us
Privacy Policy
Terms of Service
Sitemap

Copyright © 2026 All Rights Reserved.

Home
Category
SoaPy

SoaPy

SoaPy is a Proof of Concept tool for conducting offensive interaction with Active Directory Web Services from Linux hosts.

image for SoaPy

Introduction

Information

Publisher
AISecKit
Websitegithub.com
Published date2025/04/28

Categories

Penetration Testing
Security Research
Exploitation Frameworks

Tags

Exploit Development
Red Team Testing

More Products

image of Phantom

DevSecOps ToolsPenetration TestingVulnerability Scanners

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security Auditing Open Source Incident Response Vulnerability Scanning API Security+1

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt Injection Generative AI Red Team Testing Data Poisoning

PINT Benchmark

A benchmark for prompt injection detection systems, providing a neutral way to evaluate their performance.

Prompt Injection Model Robustness Security Auditing

SoaPy

SoaPy is a Proof of Concept (PoC) tool designed for offensive interactions with Active Directory Web Services (ADWS) from Linux systems. It allows security professionals to perform stealthy enumeration and targeted exploitation on Active Directory environments.

Key Features:

Custom Python Implementations: Implements Microsoft protocols like NNS, NMF, and NBFSE for ADWS interaction.
Stealthy Enumeration: Conduct reconnaissance over a proxy into internal Active Directory environments.
Targeted Exploitation:
- ServicePrincipalName writing for Kerberoasting.
- DON’T_REQ_PREAUTH flag manipulation for ASREP-Roasting.
- Write to msDs-AllowedToActOnBehalfOfOtherIdentity for Resource-Based Constrained Delegation attacks.

Benefits:

Flexibility and Control: Offers a range of options for enumerating LDAP objects and writing certain attributes.
Comprehensive Tools: Includes commands for user, computer, and group enumeration, along with advanced operations for targeted attacks.

Highlights:

Open-source tool hosted on GitHub, enabling contributions and enhancements from the community.
Focused on enabling security audits and penetration testing efforts against ADWS.