Windows

Microsoft Windows pentesting tools and resources.

Active Directory

Tool	Descrption	Directory
Aced	A tool to parse and resolve a single targeted Active Directory principal’s DACL)
BadBlood	Fills a Microsoft Active Directory Domain with a structure and thousands of objects.
BloodHound	Six Degrees of Domain Admin.
CrackMapExec	A swiss army knife for pentesting networks.

Bitlocker

Tool	Descrption	Directory
Bitleaker	This tool can decrypt a BitLocker-locked partition with the TPM vulnerability.

Cheatsheets

Tool	Description	Directory
LOLBAS	Living Off The Land Binaries and Scripts.

Interprocess Communication

Tool	Descrption	Directory
pipe-intercept	Intercept Windows Named Pipes communication.

Kerberos

Tool	Descrption	Directory
Kerberoast	A series of tools for attacking MS Kerberos implementations.
Pykek	A python library to manipulate KRB5-related data.
Rubeus	A C# toolset for raw Kerberos interaction and abuses.

Memory

Tool	Descrption	Directory
Blackbone	DLL scatter manual mapper.

Post Exploitation

Tool	Descrption	Directory
Mimikatz	Experiments with Windows security.

Powershell

Tool	Descrption	Directory
iBombshell	Tool to deploy a post-exploitation prompt at any time.
Pentestly	Python and Powershell internal penetration testing framework.
Powershell Suite	A collection of PowerShell utilities.
Stracciatella	OpSec-safe Powershell runspace from within C# with AMSI, Constrained Language Mode and Script Block Logging disabled at startup.

RDP

Tool	Descrption	Directory
PowerRemoteDesktop	Remote Desktop entirely coded in PowerShell.
SharpRDP	Remote Desktop Protocol .NET Console Application for Authenticated Command Execution.

RPC

Tool	Descrption	Directory
rpcenum	Bash tool to extract info from a domain via RPCClient.

Scripts

Tool	Descrption	Directory
LOLBAS	Living Off The Land Binaries and Scripts.
Windows-Pentest	Windows Pentest Scripts.