PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted data, hashes PowerShell and various system properties, and sends the data off to the security team. The data can be pushed to a share, sent over email, or retained locally.
☆494Jul 29, 2017Updated 8 years ago
Alternatives and similar repositories for PSRecon
Users that are interested in PSRecon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,438Nov 16, 2023Updated 2 years ago
- CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…☆658Aug 19, 2019Updated 6 years ago
- A Powershell incident response framework☆1,655Nov 22, 2022Updated 3 years ago
- Exploit the credentials present in files and memory☆846May 25, 2023Updated 3 years ago
- Powershell Threat Hunting Module☆291Sep 21, 2016Updated 9 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆387Jun 25, 2024Updated 2 years ago
- A PowerShell Module Dedicated to Reverse Engineering☆898Aug 20, 2021Updated 4 years ago
- Currently not updated for WMIEvent module...☆263Feb 23, 2016Updated 10 years ago
- Query and report user logons relations from MS Windows Security Events☆243Aug 9, 2018Updated 7 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,552Aug 2, 2019Updated 6 years ago
- ☆520Jan 26, 2021Updated 5 years ago
- This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …☆859Jun 25, 2024Updated 2 years ago
- A PowerShell TCP/IP swiss army knife.☆577May 1, 2017Updated 9 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆636Jun 20, 2017Updated 9 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,108Nov 3, 2017Updated 8 years ago
- A post-exploitation powershell tool for extracting juicy info from memory.☆1,869Jun 28, 2024Updated 2 years ago
- Collection of PowerShell scripts☆452Dec 18, 2017Updated 8 years ago
- Powershell module to assist in attacking Exchange/Outlook Web Access☆182Sep 22, 2016Updated 9 years ago
- Incident Response Forensic Framework☆610Nov 20, 2019Updated 6 years ago
- A script for advanced discovery of Privileged Accounts - includes Shadow Admins☆829Sep 9, 2019Updated 6 years ago
- Download and Execute PowerShell scripts on remote hosts with ease.☆24Jul 11, 2015Updated 10 years ago
- PowerShell Obfuscation Detection Framework☆753Dec 1, 2023Updated 2 years ago
- PowerShell No Agent Hunting☆111Apr 23, 2018Updated 8 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.☆688Oct 27, 2016Updated 9 years ago
- ☆161Aug 28, 2015Updated 10 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Nov 21, 2017Updated 8 years ago
- Powershell-based Windows Security Auditing Toolbox☆571Jan 9, 2019Updated 7 years ago
- PowerTools is a collection of PowerShell projects with a focus on offensive operations.☆2,202Dec 28, 2021Updated 4 years ago
- Remote Recon and Collection☆462Nov 23, 2017Updated 8 years ago
- Automated, Collection, and Enrichment Platform☆326Nov 14, 2019Updated 6 years ago
- ☆435May 3, 2023Updated 3 years ago
- Random Tools☆853Oct 20, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- RedSnarf is a pen-testing / red-teaming tool for Windows environments☆1,214Sep 14, 2020Updated 5 years ago
- My musings with PowerShell☆2,721Nov 19, 2021Updated 4 years ago
- A tool for deploying and detecting use of Active Directory honeytokens☆504Jul 13, 2022Updated 3 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆944Dec 12, 2023Updated 2 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,851Jan 19, 2020Updated 6 years ago
- Powershell C2 Server and Implants☆576Nov 11, 2019Updated 6 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Jun 5, 2017Updated 9 years ago