ADscan PRO
ADscan PRO
Automated Active Directory pentest with MITRE-mapped compliance reports. Docker-based, self-hosted, zero data leaves your infrastructure.
ADscan PRO extends the open-source CLI with a professional report engine. Run the same AD pentest you already know — get a client-ready PDF and structured JSON out the other side.
What PRO adds
| Feature | LITE (open source) | PRO |
|---|---|---|
| AD enumeration + exploitation | ✅ | ✅ |
| Attack path generation | ✅ | ✅ |
| Raw JSON export | ✅ | ✅ |
| MITRE-mapped PDF report | — | ✅ |
| Compliance mapper (ISO 27001 / ENS / DORA) | — | ✅ |
| Executive summary section | — | ✅ |
| Per-finding remediation roadmap | — | ✅ |
| Attack path diagrams (Cytoscape) | — | ✅ |
| Dark/light premium themes | — | ✅ |
--display-name for client branding | — | ✅ |
| Re-report from existing workspace | — | ✅ |
Quick start
1. Load the Docker image
docker load from the .tar.gz you received
2. Run a compliance scan
adscan ci with --generate-report and your framework
3. Understand the outputs
What's in the PDF, what's in the JSON
Troubleshooting
Common issues and fixes
Supported compliance frameworks
| Key | Framework | Primary use case |
|---|---|---|
iso27001 | ISO/IEC 27001:2022 | Certification audits, MSSP quarterly compliance |
ens | ENS Alto + NIS2 | Spanish regulated sector (default) |
dora | DORA EU 2022/2554 | EU financial entities |
pci_dss | PCI DSS v4 | Card-handling environments |
You can combine frameworks in a single report: --frameworks iso27001,dora
How it fits your workflow
ADscan PRO is designed for pentesters and MSSPs running compliance engagements.
The typical flow:
1. Run adscan ci on the client AD environment (20-40 min)
2. ADscan enumerates, attacks, maps findings
3. --generate-report produces PDF + JSON automatically
4. PDF → hand to client / attach to engagement report
5. JSON → ingest into your own reporting pipelineThe JSON output is structured and stable — designed to be parsed, not just read.
Support
- Discord: discord.com/invite/fXBR3P8H74 — fastest response
- Email: [email protected]
- Response SLA (beta): same day for blockers, 24h for everything else