PowerShell for every system!

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Covenant is a collaborative .NET C2 framework for red teamers.

😉 用于在插上U盘后自动按需复制该U盘的文件。”备份&偷U盘文件的神器”（写作USBCopyer，读作USBCopier）

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

Open-Source Remote Administration Tool For Windows C# (RAT)

PingCastle - Get Active Directory Security at 80% in 20% of the time

掩日 - 免杀执行器生成工具

超级弱口令检查工具是一款Windows平台的弱口令审计工具，支持批量多线程检查，可快速发现弱密码、弱口令账号，密码支持和用户名结合进行检查，大大提高成功率，支持自定义服务端口和字典。

WiX Toolset v3.x

Set of tools to analyze Windows sandboxes for exposed attack surface.

Active Directory certificate abuse.

Run PowerShell with rundll32. Bypass software restrictions.

Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

这是一个抓取浏览器密码的工具，后续会添加更多功能

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Antivirus evasion project

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

Spartacus DLL/COM Hijacking Toolkit

A tool to elevate privilege with Windows Tokens

SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。

Framework for Kerberos relaying

Xshell全版本密码恢复工具

SharpDecryptPwd source, To Decrypt Navicat,Xmanager,Filezilla,Foxmail,WinSCP,etc

SharpWMI is a C# implementation of various WMI functionality.

这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。

SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）

Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)