smbscan: a tool for discovering vulnerabilities in Active Directory and SMB

Vulnerabilities in Active Directory are being exploited in the wild right now on Microsoft servers and clients, which comes with consequences: remote code execution, privilege escalation and authorization bypass is used by attackers to compromise SMB services and gain unauthenticated remote access.

smbscan is a vulnerability scanner which can be used to quickly discover if a target host (remote / local) which is using SMB / Active Directory is vulnerable. The tool is actively scanning for security issues and returns a list of all known vulnerabilities affecting the target including the related CVE identifier. It also performs additional checks like checking the strength of the used transport encryption (SSL).