PoshBot is a chat bot written in PowerShell. It makes extensive use of classes introduced in PowerShell 5.0. PowerShell modules are...
Invoke-AntiVM is a set of modules to perform VM detection and fingerprinting (with exfiltration) via Powershell. Compatibility Run the script check-compatibility.ps1...
DeepBlueCLI – a PowerShell Module for Threat Hunting via Windows Event Logs Eric Conrad, Backshore Communications, LLC deepblue at backshore dot...
For a list of functions, their usage, and more, check out https://powerzure.readthedocs.io What is PowerZure? PowerZure is a PowerShell project created...
Collection of PowerShell functions a Red Teamer may use to collect data from a machine or gain access to a target....
Welcome to the Microsoft Defender Advanced Threat Protection PowerShell module! This module is a collection of easy-to-use cmdlets and functions designed...
Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and antivirus solutions. It digests malicious PS1’s...
HTTP-revshell is a tool focused on redteam exercises and pentesters. This tool provides a reverse connection through the http/s protocol. It...
Many usefull offensive CSharp Projects wraped into Powershell for easy usage. Why? In my personal opinion offensive Powershell is not dead...
xeca is a project that creates encrypted PowerShell payloads for offensive purposes. Creating position independent shellcode from DLL files is also...
Hijacking legitimate digital signatures is a technique that can be used during red team assessments in order to sign PowerShell code...
Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security, penetration testing and...
A team of cybersecurity specialists has just released a report on a recently found vulnerability in the Windows operating system printing process....
An on-the-fly Powershell script obfuscator meant for red team engagements. Built out of necessity. Installationgit clone https://github.com/cwolff411/powerob Usagepython3 powerob.py obfuscate originalfile.ps1...
PowerSploit is a collection of Microsoft PowerShell modules that can be used to aid penetration testers during all phases of an...
PowerShell script for connecting to a remote host. Remote host will have full control over client’s PowerShell and all its underlying...
PowerShell 7.0 is now off beta and has officially arrived for all supported platforms, including Windows 10, macOS, and various Linux distros....
Researchers from Microsoft discovered a new version of PowerShell Based Malware sLoad 2.0 that using Background Intelligent Transfer Service (BITS) for malicious...
Windows Firewall Ruleset Windows firewall rules organized into individual powershell scripts according to: Rule group Traffic direction IP version (IPv4 / IPv6)...
ThreatHunt is a simple PowerShell repository that allows you to train your threat hunting skills. ThreatHunt allows you to simulate a variety...
Malicious Macro MSBuild Generator Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass, this tool intended for adversary...