Network PenTest / Post Exploitation
by do son · Published December 13, 2017 · Last modified October 10, 2021
MimiDbg is a PowerShell oneliner that leverages the Microsoft tools “DbgShell”. DbgShell is a PowerShell front-end for the Windows debugger engine. You can find DbgShell here MimiDbg uses PowerMemory concept to retrieve Wdigest passwords from the memory....
Network PenTest / Post Exploitation
by do son · Published December 12, 2017 · Last modified October 10, 2021
Invoke-WCMDump PowerShell script to dump Windows credentials from the Credential Manager. Credential dumping is the process of obtaining account login and password information from the operating system and software. Credentials can be used to...
PowerKrabsEtw is a PowerShell module built around the krabsetw APIs. It exposes a subset of functionality directly available in krabsetw and is meant to streamline ETW experimentation. Notes This module is currently in an experimental state....
AutomatedProfiler will parse an image utilizing RegRipper, RECmd, and various PowerShell cmdlets. The output of the script will be in a text file called ‘profiler.txt’ and will contain information about said system such as...
Windows operating system in the global market share is obvious to all, and the modern Windows platform are installed by default PowerShell, and system administrators can also access and use PowerShell terminal unlimited. Everything else,...
by do son · Published September 12, 2017 · Last modified March 22, 2018
WINspect is part of a larger project for auditing different areas of Windows environments. It focuses on enumerating different parts of a Windows machine to identify security weaknesses and point to components that need...
Exploitation / Network PenTest / Post Exploitation
by do son · Published September 1, 2017 · Last modified March 26, 2018
PowerStager This script creates an executable stager that downloads a selected powershell payload. Description This script creates an executable stager that downloads a selected powershell payload, loads it into memory and executes it using...
Exploitation / Network PenTest
by do son · Published August 18, 2017 · Last modified October 25, 2022
luckystrike a PowerShell based generator of malicious .xls documents (soon to be .doc). All your payloads are saved into a database for easy retrieval & embedding into a new or existing document. Luckystrike provides...
WMI_Forensics This repository contains scripts used to find evidence in WMI repositories, specifically OBJECTS.DATA files located at: C:\WINDOWS\system32\wbem\Repository\OBJECTS.DATA C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Download CCM_RUA_Finder.py CCM_RUA_finder.py extracts SCCM software metering RecentlyUsedApplication logs from OBJECTS.DATA files. Usage The output...
Web Information Gathering / WebApp PenTest
by do son · Published July 24, 2017 · Last modified August 5, 2017
PowerMeta PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files from the...
PoshC2 PoshC2 is a proxy aware C2 framework used to aid penetration testers with red teaming, post-exploitation and lateral movement. PoshC2 is primarily written in Python3 and follows a modular format to enable users...
Maintaining Access / Network PenTest
by do son · Published July 19, 2017 · Last modified August 4, 2017
ranger A tool to support security professionals access and interact with remote Microsoft Windows based systems. This project was conceptualized with the thought process, we did not invent the bow or the arrow, just...
Information Gathering / Network PenTest
by do son · Published July 15, 2017 · Last modified October 10, 2021
Invoke-HostRecon Invoke-HostRecon runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase of an engagement. It gathers information about the local system, users,...
Bypass PowerShell execution policy by encoding ps script into bat file. Download Usage Tutorial
Network PenTest / Post Exploitation
by do son · Published June 26, 2017 · Last modified August 1, 2017
Invoke-Vnc executes a VNC agent in-memory and initiates a reverse connection, or binds to a specified port. Password authentication is supported. Execute agent remotely via WMI If you have authenticated access (password, nt hash...
Secure Your Connection
