Discover the top trending PowerShell repositories and projects on Github. Explore the latest trends in PowerShell development.
winutil
Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and UpdatesWin11Debloat
A simple powershell script to remove bloatware apps from windows, disable telemetry, bing in windows search aswell as perform various other changes to declutter and improve your windows experience. This script works for both windows 10 and windows 11.Win-Debloat-Tools
These scripts will Customize, Debloat and Improve Privacy/Performance and System Responsiveness on Windows 10+.runner-images
GitHub Actions runner imagesScoop
A command-line installer for Windows.gcopy
A clipboard synchronization tool that based on Git.Easy-GPU-PV
A Project dedicated to making GPU Partitioning on Windows easier!flare-vm
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.core
Home repository for .NET CoreWSL
Issues found on WSLMicrosoft-Analyzer-Suite
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra IDWindows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation CookbookPowerSploit
PowerSploit - A PowerShell Post-Exploitation FrameworkServerUntrustAccount
A technique for Active Directory domain persistenceSpotX
Modified Spotify client. Blocks ads and updates, and more.posh-git
A PowerShell environment for GitResolutionAutomation
Automates changing the host resolution to match the client resolution of Moonlight, with capabilities of supersampling if requiredsRDI
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcodePowerSharpPack
Microsoft-Extractor-Suite
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.WinPwn
Automation for internal Windows Penetrationtest / AD-SecurityBadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.PowerHuntShares
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]selfhosted-apps-docker
Guide by ExampleMFASweep
A tool for checking if MFA is enabled on multiple Microsoft Servicesbootloader-crimes
Bootstrap disposable Windows VMs configured through a web appARI
Azure Resource Inventory - It's a Powerful tool to create EXCEL inventory from Azure Resources with low effortAmsi_Bypass_In_2023
Amsi Bypass payload that works on Windwos 11PingCastle-Notify
Monitor your PingCastle scans to highlight the rule diff between two scansPowerParse
PowerShell PE ParserMSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.svg-explorer-extension
Extension module for Windows Explorer to render SVG thumbnails, so that you can have an overview of your SVG filesLadon
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。Ladon 11.0内置234个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchangered_team_attack_lab
Red Team Attack Lab for TTP testing & researchWindows-Optimize-Harden-Debloat
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STIG/SRG requirements for optimal performance and security.DeepBlueCLI
intellicode
Visual Studio IntelliCode - AI-enhanced development tools. 👋Want to submit an issue to MicrosoftDocs/intellicode? If you have a bug or an idea, read the contributing guidelines before opening an issue. For FAQ's seemove-wsl
Easily move your WSL distros VHDX file to a new location.PSAI
PowerShell AI module. Brings OpenAI to the console and scriptsPowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL ServerADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active DirectoryPersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morteMain
📦 The default bucket for Scoop.vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local labWindows-Containers
This repository is offered for tracking features and issues with Windows Containers. The Windows Containers product team will monitor this repo in order to engage with our community and discuss questions, customer scenarios, or feature requests.yingji
应急相关内容积累PowerShell
500+ PowerShell scripts (.ps1) for every system!BadZure
BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfigurations to create vulnerable tenants with multiple attack paths.PwshSpectreConsole
👻 PwshSpectreConsole is an opinionated wrapper for the awesome Spectre.Console libraryopeniddict-samples
.NET samples for OpenIddictAzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.sudo
It's sudo, for WindowsFido
A PowerShell script to download Windows or UEFI Shell ISOspsutils
Command line utilities written in PowershellPowerZure
PowerShell framework to assess Azure securityTiny-PowerShell-Projects
Learning PowerShell through test-driven development of games and puzzlesCloakify-Powershell
Cloak files using text based steganography output to obsfucate what data they contain. Coded in Powershell. This is a port of TryCatchHCF's Cloakify written in pythonlabview-git-diff-scripts
Scripts for generating diffs of LabVIEW filespython-versions
Python builds for Actions Runner Imagessecurity
Public repo to sync with security-prMemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIRGet-IntuneManagementExtensionDiagnostics
Get-IntuneManagementExtensionDiagnostics script analyzes Intune IME logs and shows events in TimelinePwsh-JamfClassicAPI
PowerShell Module for the Jamf Classic APISpoolTrigger
Weaponizing for privileged file writes bugs with PrintNotify Serviceqbittorrent
🧲 Soothing pastel theme for qBittorrentcv4pve-api-powershell
ProxmoxVE PowerShell module for accessing API like VMware PowerCLICreds
Some usefull Scripts and Executables for Pentest & ForensicsUltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.pm2-installer
Install PM2 offline as a service on Windows or Linux. Mostly designed for Windows.binaries
A mirror of several precompiled standalone red-teaming tools.RunAsUser
a PowerShell module that allows you to impersonate the currently logged on user, while running PowerShell.exe as system.Azure-Red-Team
Azure Security Resources and NotesInvoke-Mimikatz
Powershell Mimikatz LoaderADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.MSIdentityTools
Repository for the Microsoft Identity Tools PowerShell module which provides various tools for performing enhanced Identity administration activities.LLM-WSL2-Docker
One-click install for WizardLM-13B-Uncensored with oobabooga webuiscoop-bucket
scoop-buket for pentestpowershell-profile
Pretty PowerShell that looks good and functions almost as good as Linux terminalEventViewer-UACBypass
🍊 Orange Tsai EventViewer RCEAutoRest
Windows-Display-Orientation-Script
Powershell script to flip screen orientation horizontal / vertical quick and easy, without using Display settings menu.WPFPS
PowerShell module to interact with Windows Presentation Foundation (or WPF) controls.SDN
This repo includes PowerShell scripts and VMM service templates for setting up the Microsoft Software Defined Networking (SDN) Stack using Windows Server 2016azure-secure-networking-for-devs
redteam-arsenal
Some binaries/scripts that may be useful in red team/pentest exercisesGet-MediaInfo
Get-MediaInfo is a PowerShell MediaInfo solutiondotfiles-windows
dotfiles for Windows, including Developer-minded system defaults. Built in PowerShellxbox-game-streaming-tools
Tools for Xbox Game Streamingphp-windows-builder
Tooling to build PHP on Windowsduckdns-powershell
Updates the IP address of your Duck DNS domain(s). Intended to be run as a scheduled task.vdcWorkshop
Get-System-Techniques
evergreen
Create evergreen Windows image build pipelines with the latest version numbers and download URLs for common applicationsOctopusDeploy-Api
| Public | Code snippet samples for various operations in the Octopus Deploy REST APIStable-Diffusion-WSL2-Docker
One-click install for StabilityAI's Stable-Diffusion with AUTOMATIC1111's webuiADTimeline
Timeline of Active Directory changes with replication metadatao365recon
retrieve information via O365 and AzureAD with a valid credPSRule.Rules.Azure
Rules to validate Azure resources and infrastructure as code (IaC) using PSRule.microsoft
C#, Python, TypeScriptdotnet
C#, PowerShell, TypeScriptMicrosoftDocs
PowerShell, C#, HTMLScoopInstaller
PowerShell, C#, DockerfileSycnex
PowerShellChrisTitusTech
Shell, PowerShell, Luamandiant
Python, C++, CAzure
C#, Python, TypeScriptPowerShellMafia
PowerShellsamratashok
PowerShell, PythonBloodHoundAD
C#, PowerShell, Pythonk8gege
Python, PowerShell, Rubyactions
TypeScript, JavaScript, PowerShelldafthack
PowerShell, Python, PHPfarag2
PowerShell, VBScript, JavaScriptamd64fox
PowerShell, Batchfile, Pythondahlbyk
C#, PowerShell, JavaScriptEmpireProject
PowerShell, Java, JavaScriptS3cur3Th1sSh1t
C#, PowerShell, NimMicrosoftLearning
PowerShell, C#, Jupyter NotebookEvotecIT
PowerShell, C#, HTMLW4RH4WK
C, C++, HTMLdanielbohannon
PowerShellNetSPI
Java, PowerShell, Pythonhak5
Shell, C, PowerShellLove Open Source and this site? Check out how you can help us