A command-line installer for Windows.

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

game of active directory

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Red Teaming Tactics and Techniques

Automation for internal Windows Penetrationtest / AD-Security

Privilege Escalation Enumeration Script for Windows

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

A repository of sysmon configuration modules

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made w…

The goal of this repository is to document the most common techniques to bypass AppLocker.

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

A post-exploitation powershell tool for extracting juicy info from memory.

JAWS - Just Another Windows (Enum) Script

Re-play Security Events

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Windows Exploits

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be r…

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment

Active Directory Assessment and Privilege Escalation Script

The Shadow Attack Framework

A PowerShell script anti-virus evasion tool