.NET news, announcements, release notes, and more!

PowerSploit - A PowerShell Post-Exploitation Framework

Six Degrees of Domain Admin

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

⚡ The most powerful open source tweaker on GitHub for fine-tuning Windows 10 & Windows 11

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

Empire is a PowerShell and Python post-exploitation agent.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

PowerShell Obfuscator

Automation for internal Windows Penetrationtest / AD-Security

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

A repository of sysmon configuration modules

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to…

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

The goal of this repository is to document the most common techniques to bypass AppLocker.

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

JAWS - Just Another Windows (Enum) Script

PowerShell Pass The Hash Utils

CobaltStrike后渗透测试插件

PowerShell MachineAccountQuota and DNS exploit tools

Windows Exploits

Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment

ConPtyShell - Fully Interactive Reverse Shell for Windows

A collection of Red Team focused tools, scripts, and notes

PowerShell ReverseTCP Shell - Framework