A simple, lightweight PowerShell script to remove pre-installed apps, disable telemetry, as well as perform various other changes to customize, declutter and improve your Windows experience. Win11D…

PowerSploit - A PowerShell Post-Exploitation Framework

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Empire is a PowerShell and Python post-exploitation agent.

game of active directory

Repository for my flipper zero badUSB payloads. Now almost entirely plug and play.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Red Teaming Tactics and Techniques

PowerShell Obfuscator

Automation for internal Windows Penetrationtest / AD-Security

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

A repository of sysmon configuration modules

The Official Bash Bunny Payload Repository

PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)

My musings with PowerShell

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

netshell features all in version 2 powershell

A collection of scripts for assessing Microsoft Azure security

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made w…

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

HardeningKitty - Checks and hardens your Windows configuration

Azure Security Resources and Notes