RedSiege / WMIOps
This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
☆381Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for WMIOps
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆229Updated 7 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆319Updated 7 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆270Updated 9 years ago
- Active Directory forensic framework☆319Updated 2 years ago
- Some PowerShell Stuff☆280Updated 2 years ago
- Not PowerShell☆444Updated 8 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆629Updated 7 years ago
- PowerShell Empire Web Interface☆328Updated last year
- SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on …☆253Updated 8 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆304Updated 4 years ago
- PowerShell Scripts focused on Post-Exploitation Capabilities☆315Updated 6 years ago
- Remote Recon and Collection☆447Updated 7 years ago
- Currently not updated for WMIEvent module...☆261Updated 8 years ago
- ☆279Updated 6 years ago
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆386Updated 6 years ago
- Active Directory enumeration from non-domain system.☆117Updated 7 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆444Updated 2 years ago
- This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …☆806Updated 4 months ago
- Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec☆448Updated 8 years ago
- Forward local or remote tcp ports through SMB pipes.☆292Updated 3 years ago
- Fileless web browser information extraction☆220Updated 6 years ago
- ☆163Updated 9 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆373Updated 5 years ago
- Misc. PowerShell scripts☆115Updated 8 years ago
- Powershell module to assist in attacking Exchange/Outlook Web Access☆180Updated 8 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆168Updated last year
- ☆272Updated 2 years ago
- Automated, Collection, and Enrichment Platform☆322Updated 5 years ago
- Inject PowerShell into any process☆222Updated 5 years ago