Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

game of active directory

PowerShell Obfuscator

Automation for internal Windows Penetrationtest / AD-Security

Privilege Escalation Enumeration Script for Windows

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

HardeningKitty and Windows Hardening Settings

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

Automation to assess the state of your M365 tenant against CISA's baselines

A collection of scripts for assessing Microsoft Azure security

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

The goal of this repository is to document the most common techniques to bypass AppLocker.

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

HardeningKitty - Checks and hardens your Windows configuration

Azure Security Resources and Notes

A tool for checking if MFA is enabled on multiple Microsoft Services

Adversary Tactics - PowerShell Training

A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.

Exchange Server support tools and scripts

PowerShell framework to assess Azure security

Powershell tool to automate Active Directory enumeration.

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

Windows Local Privilege Escalation Cookbook

A list of useful Powershell scripts with 100% AV bypass (At the time of publication).

The Shadow Attack Framework