Discover the top trending PowerShell repositories and projects on Github. Explore the latest trends in PowerShell development.
Win11Debloat
A simple powershell script to remove bloatware apps from windows, disable telemetry, bing in windows search aswell as perform various other changes to declutter and improve your windows experience. This script works for both windows 10 and windows 11.winutil
Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and Updatesrunner-images
GitHub Actions runner imagesSpotX
Modified Spotify client. Blocks ads and updates, and more.Scoop
A command-line installer for Windows.GOAD
game of active directoryselfhosted-apps-docker
Guide by ExampleWSL
Issues found on WSLMisconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.core
.NET news, announcements, release notes, and more!Easy-GPU-PV
A Project dedicated to making GPU Partitioning on Windows easier!Win-Debloat-Tools
These scripts will Customize, Debloat and Improve Privacy/Performance and System Responsiveness on Windows 10+.ShellSweep
ShellSweeping the evil.flare-vm
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.windows-dev-box-setup-scripts
Scripts to simplify setting up a Windows developer boxBARK
BloodHound Attack Research KitBloodHound
Six Degrees of Domain AdminPowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Serverposh-git
A PowerShell environment for GitWindows-Optimize-Harden-Debloat
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STIG/SRG requirements for optimal performance and security.PwshSpectreConsole
👻 PwshSpectreConsole is an opinionated wrapper for the awesome Spectre.Console libraryAADInternals
AADInternals PowerShell module for administering Azure AD and Office 365kit-app-template
Omniverse Kit App TemplatesRDI
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcodeMicroBurst
A collection of scripts for assessing Microsoft Azure securitynishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.powershell-scripts
Office 365 Reporting PowerShell Scriptsmonkey365
Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID security configuration reviews.BAADTokenBroker
Invoke-SessionHunter
Retrieve and display information about active user sessions on remote computers. No admin privileges required.RetrievIR
PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.Fido
A PowerShell script to download Windows or UEFI Shell ISOsTokenTactics
Azure JWT Token Manipulation ToolsetARI
Azure Resource Inventory - It's a Powerful tool to create EXCEL inventory from Azure Resources with low effortPrivescCheck
Privilege Escalation Enumeration Script for WindowsRedTeaming-Tactics-and-Techniques
Red Teaming Tactics and TechniquesPSFzf
A PowerShell wrapper around the fuzzy finder fzfInvoke-ADEnum
Automate Active Directory EnumerationInvoke-Obfuscation
PowerShell ObfuscatorMicrosoft-Analyzer-Suite
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra IDWindows-Containers
This repository is offered for tracking features and issues with Windows Containers. The Windows Containers product team will monitor this repo in order to engage with our community and discuss questions, customer scenarios, or feature requests.AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.MFASweep
A tool for checking if MFA is enabled on multiple Microsoft ServicesPowerShell
500+ PowerShell scripts (.ps1) for every system!GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph APITerminal-Icons
A PowerShell module to show file and folder icons in the terminalwinfetch
🛠 A command-line system information utility written in PowerShell. Like Neofetch, but for Windows.ProtectMyTooling
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.SIEM
SIEM Tactics, Techiques, and ProceduresJAWS
JAWS - Just Another Windows (Enum) Scriptludus_sccm
An Ansible collection that installs an SCCM deployment with optional configurations.Microsoft
Scripts and tools for use with Microsoft products/technologiesSessionExec
Execute commands in other SessionsTokenTacticsV2
A fork of the great TokenTactics with support for CAE and token endpoint v2PowerZure
PowerShell framework to assess Azure securityGDK
Microsoft Public GDKK8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)svg-explorer-extension
Extension module for Windows Explorer to render SVG thumbnails, so that you can have an overview of your SVG filesWindowsAppsUnfukker
PowerShell script to fix WindowsApps-related permission errors and crashes.securedworkstation
Intune managed Secured workstationios-safari-remote-debug-kit
Remotely debugging iOS Safari on Windows and LinuxGPOZaurr
Group Policy Eater is a PowerShell module that aims to gather information about Group Policies but also allows fixing issues that you may find in them.PS2EXE
Module to compile powershell scripts to executablesMailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.LSTAR
LSTAR - CobaltStrike 综合后渗透插件pm2-installer
Install PM2 offline as a service on Windows or Linux. Mostly designed for Windows.Testimo
Testimo is a PowerShell module for running health checks for Active Directory against a bunch of different testscpp-docs
C++ Documentationusbrubberducky-payloads
The Official USB Rubber Ducky Payload Repositorysunshine-virtual-monitor
Scripts and instruction for automatically setting up a lone virtual monitor to stream from sunshine.Office-365-Extractor
The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)MotionPhoto2
Mux HEIC and JPG Live Photos into Google/Samsung Motion PhotosOffice365itpros
Office 365 for IT Pros PowerShell examplesEntraOps
Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)Extras
📦 The Extras bucket for Scoop.Windows10Debloater
Script to remove Windows 10 bloatware.PowerSploit
PowerSploit - A PowerShell Post-Exploitation FrameworkAwesomeCSV
🕶️A curated list of awesome tools for dealing with CSV.deno_install
Deno Binary InstallerConPtyShell
ConPtyShell - Fully Interactive Reverse Shell for WindowsMonitorSwapAutomation
Automates swapping to a dummy plug when streaming, then automates swapping back to primary monitor once finished.ShellGen
PowerShell script to generate ShellCode in various formatsParsec-Cloud-Preparation-Tool
Launch Parsec enabled cloud computers via your own cloud provider account.MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIRScriptSentry
ScriptSentry finds misconfigured and dangerous logon scripts.Chimera
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.dorado
🐟 Yet Another bucket for lovely ScoopMaui.Onboarding
Docs, scripts, helpers, and more to configure your environment easily for .NET MAUI developmentpowercat
netshell features all in version 2 powershellWHD
WHDownloader backup repoPowerShell-Red-Team
Collection of PowerShell functions a Red Teamer may use in an engagementiDRAC-Redfish-Scripting
Python and PowerShell scripting for Dell EMC PowerEdge iDRAC REST API with DMTF Redfishdbatools
🚀 SQL Server automation and instance migrations have never been safer, faster or freerff2mpv
A Firefox/Chrome add-on for playing URLs in mpv.SessionGopher
SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.Automated-MUlti-UAC-Bypass
Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022windows-driver-docs
The official Windows Driver Kit documentation sourcestinytex-releases
Windows/macOS/Linux binaries and installation methods of TinyTeXLadon
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。Ladon 11.0内置234个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchangemicrosoft
C#, Python, TypeScriptdotnet
C#, PowerShell, TypeScriptMicrosoftDocs
PowerShell, C#, HTMLScoopInstaller
PowerShell, C#, TypeScriptChrisTitusTech
Shell, Lua, PowerShellSycnex
PowerShellmandiant
Python, C++, CAzure
C#, Python, TypeScriptPowerShellMafia
PowerShellsamratashok
PowerShell, PythonBloodHoundAD
C#, PowerShell, Pythonactions
TypeScript, JavaScript, PowerShellk8gege
Python, PowerShell, Rubydafthack
PowerShell, Python, PHPfarag2
PowerShell, VBScript, JavaScriptamd64fox
PowerShell, HTML, Batchfiledahlbyk
C#, PowerShell, JavaScriptEmpireProject
PowerShell, Python, JavaScriptEvotecIT
PowerShell, C#, HTMLNetSPI
Java, PowerShell, Pythondanielbohannon
PowerShellS3cur3Th1sSh1t
C#, PowerShell, NimMicrosoftLearning
PowerShell, C#, Jupyter NotebookW4RH4WK
C, C++, HTMLhak5
Shell, C, HTMLLove Open Source and this site? Check out how you can help us