DeathStar is a Python-based red-team automation project that integrates with the Empire REST API for Active Directory security assessment. Its main purpose is to demonstrate how common Active Directory misconfigurations can be chained together in automated attack-path scenarios. The project focuses on controlled assessment workflows that model privilege escalation paths in enterprise Windows environments. Version 0.2.0 introduced a full rewrite with asynchronous execution, multi-domain and multi-forest support, a plugin system, and active monitoring behavior. The tool is designed around extensibility through the Kyber Crystal plugin system, which lets researchers add custom logic. Because it automates sensitive offensive workflows, it should only be used in legal, authorized labs or professional security engagements.

Features

  • Empire REST API integration
  • Active Directory attack-path modeling
  • Asynchronous workflow design
  • Multi-domain and forest support
  • Kyber Crystal plugin system
  • Active monitoring architecture

Project Samples

Project Activity

See All Activity >

Categories

Security

License

GNU General Public License version 3.0 (GPLv3)

Follow DeathStar

DeathStar Web Site

Other Useful Business Software
MongoDB Atlas runs apps anywhere Icon
MongoDB Atlas runs apps anywhere

Deploy in 115+ regions with the modern database for every enterprise.

MongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
Start Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of DeathStar!

Additional Project Details

Operating Systems

Windows

Programming Language

Python

Related Categories

Python Security Software

Registered

2026-06-15