Tools

GitHub - Flangvik/SharpCollection: Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.GitHub

GitHub - r3motecontrol/Ghostpack-CompiledBinaries: Compiled Binaries for GhostpackGitHub

All precompiled CPTS Windows Tools

From my MEGA account

49.36 MB folder on MEGAmega.nz

Some tools are also on my Github

GitHub - 0xSs0rZ/Windows_Tools_Internal_PentestGitHub

Other Tools from my MEGA Account

199.29 MB file on MEGAmega.nz

Powershell Tools

PowerSharpPack/PowerSharpBinaries at master · S3cur3Th1sSh1t/PowerSharpPackGitHub

Impacket example scripts compiled for Windows

GitHub - maaaaz/impacket-examples-windows: The great impacket example scripts compiled for WindowsGitHub

Precompiled C# Tools

GitHub - Flangvik/SharpCollection: Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.GitHub

GitHub - jakobfriedl/precompiled-binaries: Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environmentsGitHub

Other Tools

Cable

Active Directory Enumeration & Exploitation Tool

GitHub - logangoins/Cable: .NET post-exploitation toolkit for Active Directory reconnaissance and exploitationGitHub

WinPwn

GitHub - S3cur3Th1sSh1t/WinPwn: Automation for internal Windows Penetrationtest / AD-SecurityGitHub

linWinPwn

GitHub - lefayjey/linWinPwn: linWinPwn is a bash script that streamlines the use of a number of Active Directory toolsGitHub

PingCastle

Home - PingCastlePingCastle

pingcastle.exe --healthcheck --server <DOMAIN_CONTROLLER_IP> --user <USERNAME> --password <PASSWORD> --advanced-live --nullsession
pingcastle.exe --healthcheck --server domain.local
pingcastle.exe --graph --server domain.local
pingcastle.exe --scanner scanner_name --server domain.local
available scanners are:aclcheck,antivirus,computerversion,foreignusers,laps_bitlocker,localadmin,nullsession,nullsession-trust,oxidbindings,remote,share,smb,smb3querynetwork,spooler,startup,zerologon,computers,users

ADcheck

GitHub - CobblePot59/ADcheck: Assess the security of your Active Directory with few or all privileges.GitHub

Script Sentry

GitHub - techspence/ScriptSentry: ScriptSentry finds misconfigured and dangerous logon scripts.GitHub

Sikara

GitHub - Orange-Cyberdefense/sikara: Ease and assist the compromise of an Active Directory environment.GitHub

Bloodhound-QuickWin

bloodhound-quickwin -u neo4j -p exegol4thewin

GitHub - kaluche/bloodhound-quickwin: Simple script to extract useful informations from the combo BloodHound + Neo4jGitHub

AD Miner

GitHub - AD-Security/AD_Miner: AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknessesGitHub

Metasploit

Metasploit

NetExec

NetExec - CME

Amnesiac

GitHub - Leo4j/Amnesiac: Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environmentsGitHub

PsMapExec

nxc in powershell

GitHub - The-Viper-One/PsMapExec: Dominate Active Directory with PowerShell.GitHub

Mimikatz

Mimikatz

BetterSafetyKatz

GitHub - Flangvik/BetterSafetyKatz: Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory.GitHub

Rubeus

Rubeus

Evil-WinRM

Evil-WinRM