xpn/Powershell-PostExploitation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xpn/Powershell-PostExploitation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xpn/Powershell-PostExploitation)

Close

xpn / Powershell-PostExploitationView on GitHubMore

• External links
• Readme badge

Scripts created to help with post exploitation of a Windows host

☆99Feb 1, 2021Updated 5 years ago

Alternatives and similar repositories for Powershell-PostExploitation

Users that are interested in Powershell-PostExploitation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ivanitlearning / Juicy-Potato-x86

  View on GitHub
  Juicy Potato for x86 Windows
  ☆134Oct 12, 2019Updated 6 years ago
• turbo / zero2hero

  View on GitHub
  C implementation of the file-less UAC exploit
  ☆75Sep 1, 2016Updated 9 years ago
• MarkBuffalo / exploits

  View on GitHub
  Some random exploits that may or may not be useful. Not responsible for misuse.
  ☆21Dec 12, 2018Updated 7 years ago
• roughiz / Symlink-Directory-Traversal-smb-manually

  View on GitHub
  SAMBA Symlink Directory Traversal Manual Exploitation
  ☆31Dec 23, 2019Updated 6 years ago
• helviojunior / MS17-010

  View on GitHub
  MS17-010
  ☆272Aug 25, 2022Updated 3 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• g0tmi1k / debian-ssh

  View on GitHub
  Debian OpenSSL Predictable PRNG (CVE-2008-0166)
  ☆407Jan 22, 2023Updated 3 years ago
• xiaoxiaoleo / CVE-2009-2698

  View on GitHub
  CVE-2009-2698 compiled for CentOS 4.8
  ☆28Feb 16, 2018Updated 8 years ago
• Hood3dRob1n / Ruby-Bind-and-Reverse-Shells

  View on GitHub
  Ruby Bind and Reverse Shells I wrote using standard libs. Bind Shell includes authentication while reverse does not. Standard libs only s…
  ☆12Aug 2, 2013Updated 12 years ago
• VbScrub / AdSyncDecrypt

  View on GitHub
  ☆23Apr 22, 2020Updated 6 years ago
• rafaveira3 / exploits

  View on GitHub
  👽 Exploits written for research purposes.
  ☆11Nov 15, 2021Updated 4 years ago
• mez-0 / MoveScheduler

  View on GitHub
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Aug 25, 2020Updated 5 years ago
• nidem / kerberoast

  View on GitHub
  ☆1,495Dec 31, 2022Updated 3 years ago
• tonnant / Application_Security

  View on GitHub
  Application Security library
  ☆11Nov 6, 2012Updated 13 years ago
• pentestmonkey / windows-privesc-check

  View on GitHub
  Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems
  ☆1,498Aug 1, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• ThunderGunExpress / UAC-TokenDuplication

  View on GitHub
  ☆37Nov 4, 2017Updated 8 years ago
• Flangvik / collector

  View on GitHub
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Jun 12, 2022Updated 3 years ago
• ict / creddump7

  View on GitHub
  ☆14Apr 29, 2019Updated 7 years ago
• gaudard / scripts

  View on GitHub
  ☆18Feb 15, 2020Updated 6 years ago
• Alamot / code-snippets

  View on GitHub
  Various code snippets
  ☆284Feb 8, 2026Updated 3 months ago
• Cn33liz / CScriptShell

  View on GitHub
  CScriptShell, a Powershell Host running within cscript.exe
  ☆163Apr 11, 2017Updated 9 years ago
• skyleronken / Find-VulnerableSoftware

  View on GitHub
  Get a list of installed software in a safe manner
  ☆11Aug 7, 2017Updated 8 years ago
• johnjohnsp1 / WindowsScriptHostExtension

  View on GitHub
  Extend WSH functionality with Registration-Free COM
  ☆26Feb 23, 2017Updated 9 years ago
• Dhayalanb / windows-php-reverse-shell

  View on GitHub
  Simple php reverse shell implemented using binary .
  ☆445Nov 17, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ohpe / juicy-potato

  View on GitHub
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,779Dec 18, 2021Updated 4 years ago
• CCob / SweetPotato

  View on GitHub
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,821Sep 4, 2024Updated last year
• hexx0r / CVE-2015-6132

  View on GitHub
  Microsoft Office / COM Object DLL Planting
  ☆15May 14, 2016Updated 10 years ago
• Kevin-Robertson / Powermad

  View on GitHub
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,462Jan 11, 2023Updated 3 years ago
• Dec0ne / KrbRelayUp

  View on GitHub
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,647Aug 6, 2022Updated 3 years ago
• antonioCoco / RogueWinRM

  View on GitHub
  Windows Local Privilege Escalation from Service Account to System
  ☆943Feb 23, 2020Updated 6 years ago
• datagoboom / oswp_notes

  View on GitHub
  Some of my personal notes that helped me pass the OSWP
  ☆60May 15, 2022Updated 4 years ago
• opsxcq / exploit-CVE-2017-7494

  View on GitHub
  SambaCry exploit and vulnerable container (CVE-2017-7494)
  ☆381Dec 27, 2022Updated 3 years ago
• johnjohnsp1 / MimkatzCollider

  View on GitHub
  Mimikatz HashClash
  ☆12May 8, 2015Updated 11 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ThunderGunExpress / CustomStager

  View on GitHub
  ☆17Jul 26, 2018Updated 7 years ago
• dirkjanm / krbrelayx

  View on GitHub
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,599Mar 11, 2026Updated 2 months ago
• Tib3rius / Pentest-Cheatsheets

  View on GitHub
  ☆1,161Apr 21, 2021Updated 5 years ago
• rasta-mouse / Sherlock

  View on GitHub
  PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
  ☆2,005Oct 10, 2018Updated 7 years ago
• op0ssum / red

  View on GitHub
  red team tips and trix
  ☆12Jun 27, 2025Updated 10 months ago
• Und3rf10w / external_c2_framework

  View on GitHub
  Python api for usage with cobalt strike's External C2 specification
  ☆240Mar 22, 2023Updated 3 years ago
• itm4n / PrintSpoofer

  View on GitHub
  Abusing impersonation privileges through the "Printer Bug"
  ☆2,245Sep 10, 2020Updated 5 years ago