Skip to content
View the-emmons's full-sized avatar
67 followers · 139 following
  • Rapid7
  • Chicago

Sponsoring

@sqlmapproject

Achievements

Achievement: StarstruckAchievement: Pull SharkAchievement: Public Sponsor

Achievements

Achievement: StarstruckAchievement: Pull SharkAchievement: Public Sponsor

Block or report the-emmons

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

36 stars written in PowerShell
Clear filter

SpecterOps / BloodHound-Legacy

Six Degrees of Domain Admin

PowerShell 10,531 1,789 Updated Aug 1, 2025

samratashok / nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

PowerShell 9,726 2,550 Updated Apr 25, 2024

mandiant / flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

PowerShell 8,319 1,070 Updated Dec 23, 2025

itm4n / PrivescCheck

Privilege Escalation Enumeration Script for Windows

PowerShell 3,674 501 Updated Jan 30, 2026

monoxgas / sRDI

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

PowerShell 2,493 500 Updated Nov 15, 2023

Cloud-Architekt / AzureAD-Attack-Defense

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

PowerShell 2,465 360 Updated Dec 31, 2025

NetSPI / MicroBurst

A collection of scripts for assessing Microsoft Azure security

PowerShell 2,297 336 Updated Oct 29, 2025

davidprowe / BadBlood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

PowerShell 2,211 292 Updated Jun 7, 2023

nettitude / PoshC2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

PowerShell 2,086 358 Updated Nov 20, 2025

api0cradle / UltimateAppLockerByPassList

The goal of this repository is to document the most common techniques to bypass AppLocker.

PowerShell 2,042 367 Updated Sep 11, 2023

S3cur3Th1sSh1t / PowerSharpPack

PowerShell 1,664 311 Updated Apr 14, 2025

dafthack / MFASweep

A tool for checking if MFA is enabled on multiple Microsoft Services

PowerShell 1,627 224 Updated Mar 4, 2025

Kevin-Robertson / Powermad

PowerShell MachineAccountQuota and DNS exploit tools

PowerShell 1,425 189 Updated Jan 11, 2023

hausec / PowerZure

PowerShell framework to assess Azure security

PowerShell 1,254 180 Updated Oct 18, 2025

S3cur3Th1sSh1t / Creds

Some usefull Scripts and Executables for Pentest & Forensics

PowerShell 1,151 244 Updated Dec 11, 2025

BC-SECURITY / Beginners-Guide-to-Obfuscation

PowerShell 1,071 150 Updated May 18, 2024

dafthack / MSOLSpray

A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, i…

PowerShell 1,071 183 Updated Mar 19, 2024

mgeeky / ProtectMyTooling

Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it wi…

PowerShell 1,044 145 Updated Oct 14, 2025

AdrianVollmer / PowerHub

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

PowerShell 823 128 Updated Nov 15, 2025

p3nt4 / Invoke-SocksProxy

Socks proxy, and reverse socks server using powershell.

PowerShell 802 171 Updated Dec 9, 2025

rvrsh3ll / TokenTactics

Azure JWT Token Manipulation Toolset

PowerShell 708 109 Updated Dec 6, 2024

RedSiege / Egress-Assess

Egress-Assess is a tool used to test egress data detection capabilities

PowerShell 693 149 Updated Aug 9, 2023

In3x0rabl3 / OSEP

PEN-300 collection to help you on your exam.

PowerShell 685 157 Updated Aug 15, 2025

BloodHoundAD / BARK

BloodHound Attack Research Kit

PowerShell 583 71 Updated Mar 18, 2025

directorcia / Office365

Office 365 scripts and information

PowerShell 509 248 Updated Feb 1, 2026

blackhillsinfosec / EventLogging

Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.

PowerShell 489 74 Updated Nov 21, 2024

samratashok / Deploy-Deception

A PowerShell module to deploy active directory decoy objects.

PowerShell 240 54 Updated Nov 17, 2019

mgeeky / AzureRT

AzureRT - A Powershell module implementing various Azure Red Team tactics

PowerShell 235 31 Updated Jun 17, 2022

kacos2000 / WindowsTimeline

Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

PowerShell 196 22 Updated Feb 16, 2023

treebuilder / aad-sso-enum-brute-spray

POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln

PowerShell 192 36 Updated Sep 29, 2021
Next