PowerShell Module to ease requesting certificates on Windows

Repository for public site hosting graph permissions

Collection of macOS persistence methods and miscellaneous tools in JXA

Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)

Command line tool for analyzing .json files generated by bloodhound.py or sharphound for use in Bloodhound.

Master programming by recreating your favorite technologies from scratch.

Android and iOS source for the Empire mobile app

DARKSURGEON is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense.

GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.

In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)

an PowerShell implementation of the NEO4J .net Driver

Incident Response Hierarchy of Needs

Active Directory Control Paths auditing and graphing tools

PowerShell for every system!

Scans for accessibility tools backdoors via RDP

Graphs for Everyone

PowerShell module to import/export Excel spreadsheets, without Excel

Malicious WMI Events using PowerShell

PowerShell Fuzzy search applies fuzzy searching to text

application server attack toolkit

Python library for Windows Remote Management (WinRM)

Pester is the ubiquitous test and mock framework for PowerShell.

PowerSploit - A PowerShell Post-Exploitation Framework

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

A swiss army knife for pentesting networks

A curated list of resources for learning about application security