PhrozenIO / PowerRunAsSystem
PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate the NT AUTHORITY/SYSTEM user and execute commands or launch interactive processes without relying on third-party tools. It achieves this using only native Windows build-in features.
☆251Updated last month
Related projects ⓘ
Alternatives and complementary repositories for PowerRunAsSystem
- Active Directory delegation management tool☆284Updated last year
- A C# utility for interacting with SCCM☆571Updated 2 months ago
- Collection of scripts to retrieve stored passwords from Veeam Backup☆97Updated last year
- ☆105Updated last year
- A centralized resource for previously documented WDAC bypass techniques☆483Updated 6 months ago
- Protect your Domain Controllers by auditing and restricting LDAP requests☆103Updated 2 weeks ago
- Identify the attack paths in BloodHound breaking your AD tiering☆307Updated 2 years ago
- GolenGMSA tool for working with GMSA passwords☆136Updated 7 months ago
- A collection of tools, scripts and personal research☆113Updated 4 months ago
- ☆377Updated last year
- DNS Tunneling using powershell to download and execute a payload. Works in CLM.☆218Updated 2 years ago
- Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines☆149Updated 2 months ago
- ☆149Updated last year
- A Powershell module that helps you identify AppLocker weaknesses☆164Updated 4 years ago
- ☆350Updated 2 months ago
- Abusing Intune for Lateral Movement over C2☆280Updated 2 weeks ago
- A PowerShell armoury for security guys and girls☆461Updated 9 months ago
- Microsoft Signed PowerShell scripts☆212Updated last year
- Reportly is an AzureAD user activity report tool.☆89Updated last year
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆321Updated 5 months ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆107Updated 3 months ago
- Table of AD and Azure assets and whether they belong to Tier Zero☆190Updated this week
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆151Updated 2 months ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆249Updated 2 years ago
- A windows token impersonation tool☆280Updated last year
- Some scripts to abuse kerberos using Powershell☆313Updated last year
- ScriptSentry finds misconfigured and dangerous logon scripts.☆336Updated last week
- ☆203Updated 2 years ago
- A PowerShell module for exporting, importing, removing, permissioning, publishing Active Directory Certificate Templates. It also include…☆85Updated 4 months ago
- Audit program for AzureAD☆145Updated last year