GOAD: Recon

February 12, 2025 less than 1 minute read

GOAD (Game of Active Directory)

GOAD is an automated Active Directory lab developed by Orange Cyberdefense.
It allows the deployment of realistic multi-domain AD environments with controllers, workstations, and servers using Ansible, Docker, or Ludus, designed for practicing offensive and defensive techniques in corporate Windows infrastructures.

This lab is created and maintained mainly by its creator Cyril Servières (a.k.a @m4yfly).

Repository: github.com/Orange-Cyberdefense/GOAD
Official documentation: orange-cyberdefense.github.io/GOAD

System Reconnaissance

I have deployed the system with two modules — ELK and Exchange — to work across all possible attack vectors and study the telemetry I can obtain from each component.

ludus status

Also, there is a kali linux image in the same VLAN.

First steps

The first step will be reconnaissance with several tools and a Responder instance launched at the same time. You never know what will appear on the network when you run an nmap scan. But first, I will verify that the lab elements are visible in the ELK console.

enonethreezed

GOAD: Recon

GOAD (Game of Active Directory)

System Reconnaissance

First steps

You May Also Enjoy

Side Projects Everywhere. Oh my!

ADCS (II): Attack Paths

ADCS (I): concepts

BITSAdmin: file transfer and evasion