# hmaverickadams/beginner-network-pentesting

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/hmaverickadams-beginner-network-pentesting).**

6,205 stars · 1,692 forks

## Links

- GitHub: https://github.com/hmaverickadams/Beginner-Network-Pentesting
- awesome-repositories: https://awesome-repositories.com/repository/hmaverickadams-beginner-network-pentesting.md

## Description

This is a hands-on lab environment for learning network penetration testing techniques, centered on setting up and attacking a vulnerable Active Directory network. The project provides a structured framework for practicing the full attack chain, from initial reconnaissance and scanning through exploitation, privilege escalation, lateral movement, and credential theft, all within isolated virtual machine labs.

The lab environment is designed to simulate real-world attack scenarios, including the ability to compile and execute exploit code directly against targets without relying on Metasploit. It also integrates Metasploit for gaining shell access and maintaining persistence, and includes workflows for applying security patches to demonstrate defensive countermeasures. The project coordinates multiple tools like Nmap, Nessus, and Nikto through scripted pipelines for scanning and enumeration.

Beyond the technical attack simulation, the project includes a framework for documenting findings, attack paths, and remediation steps into a structured report suitable for client delivery. The documentation covers building the Active Directory lab, executing the full attack chain, and patching the environment to reinforce defensive practices.

## Tags

### Part of an Awesome List

- [Port Scanning](https://awesome-repositories.com/f/awesome-lists/devtools/port-scanning.md) — Uses tools like Nmap, Nessus, and Metasploit to identify open ports and running services on target machines. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Active Directory Exploitation](https://awesome-repositories.com/f/awesome-lists/security/active-directory-exploitation.md) — Executes a full attack chain including reconnaissance, scanning, exploitation, and post-exploitation against an Active Directory lab. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Active Directory Security](https://awesome-repositories.com/f/awesome-lists/security/active-directory-security.md) — Demonstrates defensive remediation techniques by applying security patches to a vulnerable Active Directory network. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Lab Remediation Workflows](https://awesome-repositories.com/f/awesome-lists/security/active-directory-security/lab-remediation-workflows.md) — Provides step-by-step patching workflows to remediate vulnerabilities in an Active Directory lab environment. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Lab Environments](https://awesome-repositories.com/f/awesome-lists/security/network-discovery-and-enumeration/lab-environments.md) — Provides a lab environment for scanning ports and services with Nmap, Nessus, and Nikto to identify exploitable weaknesses.
- [Penetration Test Reports](https://awesome-repositories.com/f/awesome-lists/security/penetration-testing/penetration-test-reports.md) — Ships a framework for documenting penetration test findings into a structured client-ready report.
- [Post-Exploitation and Lateral Movement](https://awesome-repositories.com/f/awesome-lists/security/post-exploitation-and-lateral-movement.md) — Establishes persistent access on a compromised network and moves laterally to other segments. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))

### Education & Learning Resources

- [Vulnerable Lab Environments](https://awesome-repositories.com/f/education-learning-resources/vulnerable-lab-environments.md) — Organises penetration testing scenarios into isolated virtual machine labs with pre-configured vulnerabilities for hands-on practice.
- [Metasploit Practice Labs](https://awesome-repositories.com/f/education-learning-resources/practical-labs/metasploit-practice-labs.md) — Integrates Metasploit for gaining shell access and maintaining persistence on vulnerable lab machines.
- [Manual Exploitation Labs](https://awesome-repositories.com/f/education-learning-resources/vulnerable-lab-environments/service-exploitation-labs/manual-exploitation-labs.md) — Provides a lab environment for compiling and executing exploit code manually against vulnerable targets.

### Security & Cryptography

- [Active Directory Attacks](https://awesome-repositories.com/f/security-cryptography/security/infrastructure-and-hardware/infrastructure-system-hardening/active-directory-attacks.md) — Models a full kill chain from reconnaissance to lateral movement and persistence in a Windows domain environment.
- [Lab Environments](https://awesome-repositories.com/f/security-cryptography/security/infrastructure-and-hardware/infrastructure-system-hardening/active-directory-attacks/lab-environments.md) — Provides a complete vulnerable Active Directory lab for practicing the full attack chain from reconnaissance to credential theft.
- [Exploit Execution Engines](https://awesome-repositories.com/f/security-cryptography/exploit-execution-engines.md) — Downloads exploit source code, generates shellcode, and compiles it for direct execution against targets without Metasploit.
- [Security Report Generation](https://awesome-repositories.com/f/security-cryptography/security-report-generation.md) — Structures penetration test findings into a client-ready document with attack paths, evidence, and remediation steps.

### System Administration & Monitoring

- [Active Directory Lab Builds](https://awesome-repositories.com/f/system-administration-monitoring/lab-environments/active-directory-lab-builds.md) — Sets up a Windows-based Active Directory environment with vulnerable configurations for practicing penetration testing. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))

### Development Tools & Productivity

- [Exploit Compilation Tooling](https://awesome-repositories.com/f/development-tools-productivity/exploit-compilation-tooling.md) — Downloads exploit code from public sources, compiles it, and runs it against a target without using Metasploit. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Metasploit Shell Integrations](https://awesome-repositories.com/f/development-tools-productivity/shell-integration-layers/metasploit-shell-integrations.md) — Leverages Metasploit modules for shell access, privilege escalation, and post-exploitation tasks within the lab network.

### DevOps & Infrastructure

- [Metasploit Shell Access](https://awesome-repositories.com/f/devops-infrastructure/container-hosting/container-shell-access/metasploit-shell-access.md) — Leverages Metasploit exploit modules to obtain a command shell on a vulnerable target machine. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))

### Networking & Communication

- [Network Pivoting Tools](https://awesome-repositories.com/f/networking-communication/network-pivoting-tools.md) — Establishes persistent footholds and moves laterally across network segments after initial compromise. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Service Enumeration Tools](https://awesome-repositories.com/f/networking-communication/service-enumeration-tools.md) — Probes discovered services with tools like Nikto, Dirbuster, and Burp Suite to find exploitable weaknesses. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))

### Software Engineering & Architecture

- [Security Tool Orchestration Pipelines](https://awesome-repositories.com/f/software-engineering-architecture/security-tool-orchestration-pipelines.md) — Coordinates scanning, enumeration, and exploitation tools like Nmap, Metasploit, and Nikto through scripted workflows.

### Testing & Quality Assurance

- [Test Result Reporters](https://awesome-repositories.com/f/testing-quality-assurance/general-testing-utilities/test-reporters/test-result-reporters.md) — Documents findings, vulnerabilities, and remediation steps in a structured report format for clients. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))
- [Penetration Test Reporters](https://awesome-repositories.com/f/testing-quality-assurance/general-testing-utilities/test-reporters/test-result-reporters/penetration-test-reporters.md) — Documents findings, attack paths, and remediation steps in a structured report suitable for client delivery. ([source](https://cdn.jsdelivr.net/gh/hmaverickadams/beginner-network-pentesting@master/README.md))