Discover PowerShell

Script to remove Windows 10 bloatware.

Windows10Debloater

Blazor moved to https://github.com/dotnet/aspnetcore

blazor

PowerSploit - A PowerShell Post-Exploitation Framework

PowerSploit

Six Degrees of Domain Admin

BloodHound

A PowerShell environment for Git

posh-git

Empire is a PowerShell and Python post-exploitation agent.

Empire

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

nishang

A prompt theming engine for Powershell

oh-my-posh2

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

commando-vm

A Collection of Scripts Which Disable / Remove Windows 10 Features and Apps

Debloat-Windows-10

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

flare-vm

A development tool for all your projects that is fast, easy, powerful and liberating

lando

[DEPRECATED - https://github.com/chocolatey/choco] Chocolatey NuGet - Like apt-get, but for windows.

chocolatey

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

K8tools

PowerShell script for automation of routine tasks done after fresh installations of Windows 10 / Server 2016 / Server 2019

Win10-Initial-Setup-Script

Invoke-Obfuscation

PowerShell Obfuscator

Red Teaming Tactics and Techniques

RedTeaming-Tactics-and-Techniques

Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and Updates

winutil

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。Ladon 11.0内置234个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息，高危漏洞检测16个含MS17010、Zimbra、Exchange

Ladon

为Docker Desktop for Mac/Windows开启Kubernetes和Istio。

k8s-for-docker-desktop

⚡ The most powerful PowerShell module on GitHub for fine-tuning Windows 10 & Windows 11

Sophia-Script-for-Windows

Automation for internal Windows Penetrationtest / AD-Security

WinPwn

My musings with PowerShell

PowerShell-Suite

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

sRDI

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

MailSniper

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

discover

Samples for ML.NET, an open source and cross-platform machine learning framework for .NET.

machinelearning-samples

sudo

It's sudo, for Windows

Pester is the ubiquitous test and mock framework for PowerShell.

Pester

Privilege Escalation Enumeration Script for Windows

PrivescCheck

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

PowerUpSQL

A post-exploitation powershell tool for extracting juicy info from memory.

mimikittenz

A curated list of delightful PowerShell modules and resources

awesome-powershell

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

Invoke-PSImage

if you are Thanos(root), this command could delete half your files randomly

Thanos.sh

Extension module for Windows Explorer to render SVG thumbnails, so that you can have an overview of your SVG files

svg-explorer-extension

packer-windows

Windows Packer Templates

Modified Spotify client. Blocks ads and updates, and more.

SpotX

Source code behind the Windows Subsystem for Linux documentation.

WSL

A Project dedicated to making GPU Partitioning on Windows easier!

Easy-GPU-PV

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

Sherlock

The goal of this repository is to document the most common techniques to bypass AppLocker.

UltimateAppLockerByPassList

netshell features all in version 2 powershell

powercat

PowerTools is a collection of PowerShell projects with a focus on offensive operations.

PowerTools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

Penetration-Testing-Tools

PowerShell Pass The Hash Utils

Invoke-TheHash

🔭 Turning Windows into an environment ready for modern development

windows-development-environment

deno_install

Deno Binary Installer

Remote Desktop entirely coded in PowerShell.

PowerRemoteDesktop

📦 The Extras bucket for Scoop.

Extras

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

BadBlood

Erebus

CobaltStrike后渗透测试插件

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Active-Directory-Exploitation-Cheat-Sheet

A repository of sysmon configuration modules

sysmon-modular

NetRipper - Smart traffic sniffing for penetration testers

NetRipper

GDK

Microsoft Public GDK

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

PoshC2

Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment

icebreaker

Place to store our documentation, code samples, etc for public consumption.

Virtualization-Documentation

A collection of scripts for assessing Microsoft Azure security

MicroBurst

Some scripts useful for red team activities

Red_Team

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!

DomainPasswordSpray

📦 The default bucket for Scoop.

Main

These scripts will Customize, Debloat and Improve Privacy/Performance and System Responsiveness on Windows 10+.

Win-Debloat-Tools

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

vulnerable-AD

This is the Ultimate Windows 10 Script from a creation from multiple debloat scripts and gists from github.

win10script

RedSnarf is a pen-testing / red-teaming tool for Windows environments

redsnarf

Scripts to simplify setting up a Windows developer box

windows-dev-box-setup-scripts

A build automation tool written in PowerShell

psake

Repeatable, reboot resilient windows environment installations made easy using Chocolatey packages

boxstarter

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

SessionGopher

PowerShell MachineAccountQuota and DNS exploit tools

Powermad

A PowerShell based utility for the creation of malicious Office macro documents.

luckystrike

A simple powershell script to remove bloatware apps from windows, disable telemetry, bing in windows search aswell as perform various other changes to declutter and improve your windows experience. This script works for both windows 10 and windows 11.

Win11Debloat

AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2022, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.

AutomatedLab

Exploits

Windows Exploits

Adversary Tactics - PowerShell Training

at-ps

PowerSharpPack

The Official Bash Bunny Payload Repository

bashbunny-payloads

Security-Datasets

Re-play Security Events

Install/uninstall scripts for Windows Terminal context menu items

windowsterminal-shell

Open Source documentation for the Azure Architecture Center on Microsoft Docs

architecture-center

PowerShell ReverseTCP Shell - Framework

ReverseTCPShell

DeepBlueCLI

A PowerShell script to download Windows or UEFI Shell ISOs

Fido

Solarized color settings for Windows command prompt

cmd-colors-solarized

JAWS - Just Another Windows (Enum) Script

JAWS

cpp-docs

C++ Documentation

Azure Security Resources and Notes

Azure-Red-Team

HardeningKitty and Windows Hardening settings and configurations

windows_hardening

Active Directory Assessment and Privilege Escalation Script

ADAPE-Script

A PowerShell module to show file and folder icons in the terminal

Terminal-Icons

SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket

NetNTLMtoSilverTicket

A collection of Red Team focused tools, scripts, and notes

red-team-scripts

My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+

cobalt-arsenal

This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported is translated into a WMI-equivalent for use on a network/remote machine. WMImplant is WMI based.

100

WMImplant