A Powershell module that helps you identify AppLocker weaknesses

File formats dissections and more...

Invoke Command As System/Interactive/GMSA/User on Local/Remote machine & returns PSObjects.

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Download ScriptAnalyzer from PowerShellGallery

For when you want a computer to be done - without admin!

Executes lateral movement through PowerPoint DCOM objects

Exploit primitives for PowerShell

A simple, extensible C&C beaconing system.

DSC Module Used to create a JEA Configuration on a server

netshell features all in version 2 powershell

Some PowerShell Stuff

A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)

HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass

PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)

PowerShell Runspace Post Exploitation Toolkit

The Hunting ELK

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Meltdown PoC for reading passwords from Google Chrome.

Open source memory scanner written in C++

Utilities for Sysmon

Sysmon Tools for PowerShell

💻 ARCH : ARM, ARM64, MIPS, PPC, X86

Data exfiltration over DNS request covert channel

Empire is a PowerShell and Python post-exploitation agent.

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

Automate the creation of a lab environment complete with security tooling and logging best practices