Timeline of Active Directory changes with replication metadata
Automate the creation of a lab environment complete with security tooling and logging best practices
Testimo is PowerShell module for running health checks for Active Directory (and later on any other server type) against a bunch of different tests
Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.
9. Servicenow Powershell
This PowerShell module provides a series of cmdlets for interacting with the ServiceNow REST API
Currently not updated for WMIEvent module...
This repository contains .NET Documentation.
14. Cve 2020 1350
HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2000 up to Windows Server 2019.
PowerShell module to interact with Atlassian JIRA
17. Awesome Azure
A Curated List of Azure Resources. The list provides you with enough resources to get a full overview of the services in Azure and get started with cloud computing.
Open-Source, Platform independent module that consumes data points as input and plots them on a 2D graph [Scatter / Bar / Line] on the PowerShell Console/Terminal
Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launched processes, and gives the analyst the option to either keep the process suspended, or to resume it.
Powershell script for enumerating vulnerable DCOM Applications
DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any machine, powershell modules, and Dropbox servers as a means of communication.
24. Emacs Wsl
Install and run Emacs with the Windows Subsystem for Linux (WSL) in Windows 10.
generate reverse shell from CLI for linux and Windows.
lateral movement techniques that can be used during red team exercises
This module contains DSC resources for deployment and configuration of Active Directory Domain Services.
PowerShell module for simple Slack integration
Connection-less Powershell Persistent and Resilient Backdoor
Pester is the ubiquitous test and mock framework for PowerShell.
PSTeams is a PowerShell Module working on Windows / Linux and Mac. It allows sending notifications to Microsoft Teams via WebHook Notifications. It's pretty flexible and provides a bunch of options. Initially, it only supported one sort of Team Cards but since version 2.X.X it supports Adaptive Cards, Hero Cards, List Cards, and Thumbnail Cards. All those new cards have their own cmdlets and the old version of creating Teams Cards stays as-is for compatibility reasons.
A single Repo to contain the source for ALL my Azure DevOps Build/Release Extensions. The packages can be found in the Azure DevOps Marketplace
43. Graphite Powershell Functions
A group of PowerShell functions that allow you to send Windows Performance counters to a Graphite Server, all configurable from a simple XML file.
44. Posh R2
PowerShell - Rapid Response... For the incident responder in you!
Test Blue Team detections without running any attack.