PowerSploit - A PowerShell Post-Exploitation Framework

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

PowerShell Obfuscator

Automation for internal Windows Penetrationtest / AD-Security

Privilege Escalation Enumeration Script for Windows

The goal of this repository is to document the most common techniques to bypass AppLocker.

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

JAWS - Just Another Windows (Enum) Script

PowerShell Pass The Hash Utils

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be r…

ConPtyShell - Fully Interactive Reverse Shell for Windows

Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)

Cmd.exe Command Obfuscation Generator & Detection Test Harness

Tool to audit and attack LAPS environments

Exchange privilege escalations to Active Directory

getsystem via parent process using ps1 & embeded c#

PowerShell module to query SQLite databases

A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.