Web Exploitation / WebApp PenTest
by do son · Published March 28, 2019 · Last modified April 20, 2020
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server The PowerUpSQL module includes functions that support SQL Server discovery, auditing for common weak configurations, and privilege escalation on the scale. It...
ThunderShell ThunderShell is a C# RAT that communicates via HTTP requests. All the network traffic is encrypted using a second layer of RC4 to avoid SSL interception and defeat network...
Invoke-TheHash contains PowerShell functions for performing pass the hash WMI and SMB tasks. WMI and SMB services are accessed through .NET TCPClient connections. Authentication is performed by passing an NTLM...
PowerShdll Run PowerShell with dlls only. Does not require access to powershell.exe as it uses powershell automation dlls. Does not require access to powershell.exe as it uses powershell automation dlls....
Network PenTest / Post Exploitation
by do son · Published August 6, 2018 · Last modified November 4, 2024
Powermad – PowerShell MachineAccountQuota and DNS exploit tools Functions MachineAccountQuota Functions The default Active Directory ms-DS-MachineAccountQuota attribute setting allows all domain users to add up to 10 machine accounts to...
Network PenTest / Post Exploitation
by do son · Published March 4, 2018 · Last modified October 10, 2021
PSSysmonTools Sysmon Tools for PowerShell Download git clone https://github.com/mattifestation/PSSysmonTools.git Implemented functions Get-SysmonConfiguration Parses a Sysmon driver configuration from the registry. The output is nearly identical to that of “sysmon.exe -c” but...
Network PenTest / Post Exploitation
by do son · Published February 13, 2018 · Last modified November 4, 2024
Misc-Powershell-Scripts Download git clone https://github.com/rvrsh3ll/Misc-Powershell-Scripts.git This project includes Backdoor-ExcelAddIn.ps1 Add a malicious addin for persistence. Don’t forget to add your split base64 encoded shellcode in the Init function Brute-Email.ps1 Using a...
Invoke-PSImage Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute Invoke-PSImage takes a PowerShell script and embeds the bytes of the script...
Network PenTest / Post Exploitation
by do son · Published December 13, 2017 · Last modified November 4, 2024
MimiDbg is a PowerShell oneliner that leverages the Microsoft tools “DbgShell”. DbgShell is a PowerShell front-end for the Windows debugger engine. You can find DbgShell here MimiDbg uses PowerMemory concept to retrieve Wdigest...
Network PenTest / Post Exploitation
by do son · Published December 12, 2017 · Last modified November 4, 2024
Invoke-WCMDump PowerShell script to dump Windows credentials from the Credential Manager. Credential dumping is the process of obtaining account login and password information from the operating system and software. Credentials...
PowerKrabsEtw is a PowerShell module built around the krabsetw APIs. It exposes a subset of functionality directly available in krabsetw and is meant to streamline ETW experimentation. Notes This module is currently...
AutomatedProfiler will parse an image utilizing RegRipper, RECmd, and various PowerShell cmdlets. The output of the script will be in a text file called ‘profiler.txt’ and will contain information about...
Network PenTest / Post Exploitation
by do son · Published September 12, 2017 · Last modified November 4, 2024
Windows operating system in the global market share is obvious to all, and the modern Windows platform are installed by default PowerShell, and system administrators can also access and use...
by do son · Published September 12, 2017 · Last modified November 4, 2024
WINspect is part of a larger project for auditing different areas of Windows environments. It focuses on enumerating different parts of a Windows machine to identify security weaknesses and point...
Exploitation / Network PenTest / Post Exploitation
by do son · Published September 1, 2017 · Last modified November 4, 2024
PowerStager This script creates an executable stager that downloads a selected powershell payload. Description This script creates an executable stager that downloads a selected powershell payload, loads it into memory...
Support Securityonline.info site. Thanks!
