THREATOPS
THREAT OPSThreat News › Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory

Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory

lowthehackernewsPublished 2026-07-13

Cybersecurity researchers have flagged an intrusion in which an unknown threat actor leveraged a vibe-coded PowerShell script for Active Directory (AD) enumeration.

"The script looked for the Domain Controller (DC) and mapped users, computers, and domains, before creating a directory and exporting out a number of files, and finally creating AD_Report.html to measure the success of the

MITRE ATT&CK techniques

Original source: https://thehackernews.com/2026/07/attacker-uses-suspected-ai-generated.html