// arsenal·Post-ExploitAdvancedFOSS

PowerSploit

Mattifestation's collection of offensive PowerShell modules.

Post-Exploit

$ powersploit --help

PowerSploit

// what it is

Description

Includes Invoke-Mimikatz, PowerView (AD recon), PowerUp (priv esc), Invoke-Kerberoast, Out-EncryptedScript. No longer actively maintained but still functional.

// use cases

What people use it for

PowerShell-based AD enumeration
Mimikatz in-memory

// commands

The commands you'll type

Mimikatz in-memory

$ Invoke-Mimikatz -Command 'sekurlsa::logonpasswords'

// facts

category: Post-Exploit
platforms: WIN
license: FOSS
difficulty: Advanced

// links

// related in Post-Exploit

Post-ExploitAdvanced

Mimikatz

Benjamin Delpy's Windows credential-theft Swiss Army knife.

Impacket

SecureAuth (now Fortra) Python toolkit for low-level Windows network protocols.

BloodHound

Active Directory attack-path visualizer — graphs the shortest path to Domain Admin.

FOSS

LIN·WIN·MAC

open entry →