Internal All The Things is a large, community-driven cheat-sheet and documentation repository focused on internal network penetration testing and Active Directory (AD) exploitation. It covers a broad range of topics; AD certificate services, Kerberos attacks, lateral movement, tooling, post-exploitation techniques, and networking. The content is designed to help both learners and experienced red-teamers fill gaps in their internal pentest knowledge, especially for environments where AD and internal tooling dominate. Because internal engagements often have more complexity and fewer online guides compared to internet-facing web apps, this repo serves as a converging point for best practices, write-ups, and cheat sheets. The repository is structured, continuously updated, and encourages contributions, so its value grows over time. For teams, it can act as a reference handbook for engagements or a training resource to onboard new pentesters.
Features
- Organized documentation on Active Directory & internal network attacks
- Cheat-sheets for quick reference during engagements
- Written for both red-team and blue-team audiences
- Continuously updated community contributions and modern techniques
- Structured by topic (Kerberos, certification services, lateral movement, etc)
- Supports training and reference usage in internal pentests
Project Samples
