PowerSploit - A PowerShell Post-Exploitation Framework

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Empire is a PowerShell and Python post-exploitation agent.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

game of active directory

Red Teaming Tactics and Techniques

Automation for internal Windows Penetrationtest / AD-Security

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

A collection of scripts for assessing Microsoft Azure security

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

Azure Security Resources and Notes

Azure Resource Inventory - It's a Powerful tool to create EXCEL inventory from Azure Resources with low effort

PowerShell framework to assess Azure security

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365

My Notes about Penetration Testing

GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.

Red Team Attack Lab for TTP testing & research

Bloodhound Attack Path Automation in CobaltStrike

$MFT directory tree reconstruction & FILE record info

A PowerShell module to deploy active directory decoy objects.

Assist reverse tcp shells in post-exploration tasks

Autocomplete for PowerShell

Simulating Adversary Operations

A CALDERA plugin

PowerSploit - A PowerShell Post-Exploitation Framework