PowerShell – Page 7 – PentestTools

Dr0p1t-Framework 1.3.2.1 – A Framework That Creates An Advanced FUD Dropper With Some Tricks

December 7, 2017

Have you ever heard about trojan droppers ? In short dropper is type of malware that downloads other malwares and Dr0p1t gives you the chance to create a...

Post Exploitation

DBC2 (DropboxC2) – A Modular Post-Exploitation Tool, Composed Of An Agent Running On The Victim’S Machine

November 24, 2017

Add Comment

DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim’s machine, a controler, running on any machine...

Exploitation Tools

Excalibur – An Eternalblue exploit payload based Powershell

November 21, 2017

Add Comment

Excalibur is an Eternalblue exploit based “Powershell” for the Bashbunny project. It’s purpose is to reflect on how a “simple”...

Vulnerability Analysis

Fake Sandbox Processes (FSP) – Tool to simulate fake processes of analysis sandbox/VM software

November 16, 2017

Add Comment

This small script will simulate fake processes of analysis, sandbox and/or VM software that some malware will try to avoid. You can download the original...

Post Exploitation

Nishang – PowerShell Penetration Testing Framework

November 15, 2017

Add Comment

Nishang is an open source framework and collection of powerful PowerShell scripts and payloads that you can use during penetration testing audit, post...

Information Gathering

TrevorC2 – Command and Control via Legitimate Behavior over HTTP

November 11, 2017

Add Comment

TrevorC2 is a client/server model for masking command and control through a normally browsable website. Detection becomes much harder as time intervals are...

Vulnerability Analysis

ACLight – PowerShell Script for Advanced Discovery of Privileged Accounts (includes Shadow Admins)

October 15, 2017

Add Comment

ACLight is a tool for discovering privileged accounts through advanced ACLs (Access Lists) analysis. It includes the discovery of Shadow Admins in the scanned...

Information Gathering

DET – (extensible) Data Exfiltration Toolkit

October 15, 2017

Add Comment

DET (is provided AS IS), is a proof of concept to perform Data Exfiltration using either single or multiple channel(s) at the same time. This is a Proof of...

Post Exploitation

WINspect – Powershell-based Windows Security Auditing Toolbox

October 7, 2017

Add Comment

WINspect is part of a larger project for auditing different areas of Windows environments. It focuses on enumerating different parts of a Windows machine...

Exploitation Tools

PowerShdll – Run PowerShell with rundll32 (Bypass software restrictions)

October 6, 2017

Add Comment

Run PowerShell with dlls only. Does not require access to powershell.exe as it uses powershell automation dlls. dll mode: Usage: rundll32 PowerShdll,main...

Tag - PowerShell

Dr0p1t-Framework 1.3.2.1 – A Framework That Creates An Advanced FUD Dropper With Some Tricks

DBC2 (DropboxC2) – A Modular Post-Exploitation Tool, Composed Of An Agent Running On The Victim’S Machine

Excalibur – An Eternalblue exploit payload based Powershell

Fake Sandbox Processes (FSP) – Tool to simulate fake processes of analysis sandbox/VM software

Nishang – PowerShell Penetration Testing Framework

TrevorC2 – Command and Control via Legitimate Behavior over HTTP

ACLight – PowerShell Script for Advanced Discovery of Privileged Accounts (includes Shadow Admins)

DET – (extensible) Data Exfiltration Toolkit

WINspect – Powershell-based Windows Security Auditing Toolbox

PowerShdll – Run PowerShell with rundll32 (Bypass software restrictions)

Topics