awesome-repositories.com
Blog
awesome-repositories.com

Descubre los mejores repositorios open-source con nuestra búsqueda potenciada por IA.

ExplorarBúsquedas curadasAlternativas open-sourceSoftware autohospedableBlogMapa del sitio
ProyectoAcerca deCómo clasificamosPrensaServidor MCP
Aviso legalPrivacidadTérminos
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
PowerShellMafia avatar

PowerShellMafia/PowerSploitArchived

0
View on GitHub↗
12,880 estrellas·4,730 forks·PowerShell·other·7 vistas

PowerSploit

PowerSploit is a collection of PowerShell modules designed for security assessment, penetration testing, and red team operations. It provides a framework for auditing Windows system configurations and evaluating the effectiveness of security defenses within an enterprise environment.

The framework focuses on techniques that leverage native system administration tools and scripting environments to perform operations. It includes capabilities for executing arbitrary commands, escalating user privileges, and maintaining system persistence through event subscriptions. By utilizing in-memory execution and reflective loading, the modules allow for the operation of payloads without writing files to the disk, assisting in the simulation of advanced adversary behavior.

Beyond core exploitation tasks, the project supports network reconnaissance and the modification of existing scripts to test system responses. These tools are intended for authorized security assessments and the hardening of individual workstations against potential vulnerabilities.

Features

  • Penetration Testing Suites - Provides a comprehensive framework of PowerShell modules for security assessment and penetration testing.
  • Offensive & Red Team Operations - Simulates advanced adversary behavior to evaluate the effectiveness of detection and response capabilities.
  • Arbitrary - Runs custom scripts or system commands directly on a target machine to facilitate remote control.
  • Windows Administration Utilities - Manages and audits local system configurations and user permissions using native scripting tools.
  • Privilege Escalation Tools - Exploits misconfigurations to gain administrative access and perform actions requiring higher-level permissions.
  • Memory-Only Execution - Executes malicious payloads entirely within volatile memory to minimize forensic footprints on storage.
  • Reflective Loading Mechanisms - Loads compiled binary modules into memory without writing to disk to avoid antivirus file scanning.
  • Threat Simulation Tools - Framework for post-exploitation and adversary simulation.
  • Post Exploitation Tools - Collection of PowerShell modules for post-exploitation tasks.
  • Active Directory Exploitation - Framework for post-exploitation and AD architecture enumeration.
  • Active Directory Tools - Framework for post-exploitation and domain enumeration tasks.
  • Execution and Persistence - Suite of PowerShell scripts for post-exploitation.
  • Exploitation and Post-Exploitation - Framework for post-exploitation tasks on Windows systems.
  • Exploitation Frameworks - Collection of PowerShell modules for post-exploitation tasks.
  • Offensive Security Frameworks - A comprehensive framework for PowerShell-based post-exploitation tasks.
  • Post Exploitation - Classic framework for PowerShell-based post-exploitation.
  • Post Exploitation Frameworks - Collection of PowerShell scripts for post-exploitation.
  • PowerShell Tooling - Comprehensive framework for PowerShell exploitation.
  • Seguridad y privacidad - Framework for post-exploitation tasks in Windows environments.
  • Security Tooling - Framework for situational awareness and post-exploitation.
  • System Enumeration - Retrieves local account passwords managed via Group Policy Preferences.
  • Windows Post Exploitation - Comprehensive collection of PowerShell modules for reconnaissance and exploitation.
  • Windows Security Utilities - Framework for post-exploitation tasks using PowerShell.
  • Persistence Mechanisms - Ensures continued access to a compromised system after reboots by installing backdoors or scheduled tasks.
  • Security Software Evasion - Avoids detection by antivirus and endpoint protection tools to run unauthorized scripts.
  • Process Token Manipulators - Manipulates security access tokens of active system processes to elevate user privileges.
  • Security Testing and Auditing - Identifies misconfigurations and potential attack vectors on individual workstations to strengthen security posture.
  • Administrative Living-Off-The-Land Techniques - Leverages built-in system administration tools to perform operations while appearing as legitimate administrative activity.
  • Security Injection Techniques - Provides techniques for injecting arbitrary code into process memory to evade security detection.
  • System Event Triggers - Registers persistent system triggers that automatically execute commands upon specific events to maintain long-term access.
  • Network Reconnaissance Tools - Gathers information about system configurations and network topology to identify potential attack vectors.

Historial de estrellas

Gráfico del historial de estrellas de powershellmafia/powersploitGráfico del historial de estrellas de powershellmafia/powersploit

Búsqueda con IA

Explora más repositorios increíbles

Describe lo que necesitas en lenguaje sencillo: la IA clasifica miles de proyectos open-source curados por relevancia.

Start searching with AI

Alternativas open-source a PowerSploit

Proyectos open-source similares, clasificados según cuántas características comparten con PowerSploit.
  • samratashok/nishangAvatar de samratashok

    samratashok/nishang

    9,951Ver en GitHub↗

    Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows targets. It functions as a post-exploitation toolkit and payload generator to automate attacks and manage remote targets. The project provides specialized capabilities for bypassing security controls, such as disabling the Antimalware Scan Interface and employing in-memory execution to avoid disk-based detection. It includes a variety of stealthy command and control mechanisms, utilizing non-standard channels like DNS TXT records, ICMP traffic, and webmail for communication a

    PowerShellactivedirectoryhackinginfosec
    Ver en GitHub↗9,951
  • gentilkiwi/mimikatzAvatar de gentilkiwi

    gentilkiwi/mimikatz

    21,630Ver en GitHub↗

    Mimikatz is a security research suite designed for auditing Windows authentication and managing system security configurations. It provides a comprehensive framework for extracting sensitive credentials, manipulating process privileges, and managing digital identity assets directly from system memory or offline memory dumps. The project distinguishes itself through advanced system-level exploitation techniques, including runtime process injection, API hooking, and the ability to bypass cryptographic export restrictions. It features a specialized toolkit for Kerberos protocol operations, allow

    C
    Ver en GitHub↗21,630
  • byt3bl33d3r/crackmapexecAvatar de byt3bl33d3r

    byt3bl33d3r/CrackMapExec

    9,144Ver en GitHub↗

    CrackMapExec is a network penetration testing framework and automated security scanner designed to assess security postures across large IP ranges. It functions as a multi-protocol security scanner and network protocol auditor used to identify vulnerabilities and misconfigurations. The tool provides capabilities for Active Directory auditing to enumerate users and permissions, as well as post-exploitation enumeration to gather system metadata and discover lateral movement paths. It includes a framework for credential spraying and harvesting across various network services. The system utilize

    Python
    Ver en GitHub↗9,144
  • ghostpack/rubeusAvatar de GhostPack

    GhostPack/Rubeus

    4,890Ver en GitHub↗

    Rubeus is a comprehensive Kerberos attack toolkit for Active Directory environments, written in C#. It provides a full suite of operations for manipulating Kerberos tickets, exploiting delegation configurations, and performing credential attacks against Windows domains. The toolkit enables ticket extraction from logon sessions and memory, with real-time monitoring via Event Tracing for Windows. It supports forging golden and silver tickets with arbitrary privileges, as well as the creation of forged delegation contexts. Delegation attacks include abuse of constrained and unconstrained delegat

    C#kerberos
    Ver en GitHub↗4,890
Ver las 30 alternativas a PowerSploit→

Preguntas frecuentes

¿Qué hace powershellmafia/powersploit?

PowerSploit is a collection of PowerShell modules designed for security assessment, penetration testing, and red team operations. It provides a framework for auditing Windows system configurations and evaluating the effectiveness of security defenses within an enterprise environment.

¿Cuáles son las características principales de powershellmafia/powersploit?

Las características principales de powershellmafia/powersploit son: Penetration Testing Suites, Offensive & Red Team Operations, Arbitrary, Windows Administration Utilities, Privilege Escalation Tools, Memory-Only Execution, Reflective Loading Mechanisms, Threat Simulation Tools.

¿Qué alternativas de código abierto existen para powershellmafia/powersploit?

Las alternativas de código abierto para powershellmafia/powersploit incluyen: samratashok/nishang — Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows… gentilkiwi/mimikatz — Mimikatz is a security research suite designed for auditing Windows authentication and managing system security… byt3bl33d3r/crackmapexec — CrackMapExec is a network penetration testing framework and automated security scanner designed to assess security… ghostpack/rubeus — Rubeus is a comprehensive Kerberos attack toolkit for Active Directory environments, written in C#. It provides a full… empireproject/empire — Empire is a command and control framework and post-exploitation toolkit used for network penetration testing. It… fortra/impacket — Impacket is a collection of Python classes designed for the construction, manipulation, and analysis of low-level…