Stars
CISOinaBox is a free community framework to organize tools, templates, and resources to help equip new CISOs and set them up for success.
PowerShell for Active Directory, Defender XDR, Entra ID, Exchange Server, Microsoft 365, Windows, and more! ✌️
This is a backup/test setup for the /r/ActiveDirectory reddit wiki and resource posts.
PowerShell tools to help defenders hunt smarter, hunt harder.
NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
AV/EDR Lab environment setup references to help in Malware development
Complete list of LPE exploits for Windows (starting from 2023)
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
Collection of Tips & Tricks for collaborating on Bluesky
Invoke Command As System/Interactive/GMSA/User on Local/Remote machine & returns PSObjects.
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
Leverages B64 chunks to split files and save to clipboard
EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.
HardeningKitty and Windows Hardening Settings
Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Pers…
Code conversion command line tool for PowerShell and C#
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
A set of tools for querying ActiveDirectory using [adsisearcher] instead of RSAT
Unchain AMSI by patching the provider’s unmonitored memory space
Six Degrees of Domain Admin
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Keeps track of what repos needs to be saved from the new Github " Exploits and malware policy"
A list of resources for those interested in getting started in bug bounties
Open source education content for the researcher community