A simple, lightweight PowerShell script to remove pre-installed apps, disable telemetry, as well as perform various other changes to customize, declutter and improve your Windows experience. Win11D…

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

game of active directory

Repository for my flipper zero badUSB payloads. Now almost entirely plug and play.

Red Teaming Tactics and Techniques

PowerShell Obfuscator

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

PowerShell Pass The Hash Utils

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

AADInternals PowerShell module for administering Azure AD and Office 365

PowerShell MachineAccountQuota and DNS exploit tools

A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.

PowerShell framework to assess Azure security

Windows Local Privilege Escalation Cookbook

Dominate Active Directory with PowerShell.

Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory

Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)

PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.

Tool to audit and attack LAPS environments

SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket

Intranet penetration tools

Exchange privilege escalations to Active Directory

An introduction to Active Directory security

ScriptSentry finds misconfigured and dangerous logon scripts.