aboutsummaryrefslogtreecommitdiff
path: root/README.md
AgeCommit message (Collapse)AuthorFilesLines
2016-05-12Added Get-MicrophoneAudio.ps1 and associated Pester testssixdub1-0/+4
2015-12-16Added volume shadow copy functions to README.mdPowerShellMafia1-1/+9
2015-12-16Update README.mdPowerShellMafia1-4/+11
2015-12-03Added ./Privesc/ folder that integrates PowerUp.ps1Harmj0y1-0/+12
Updated README.md's
2015-11-05Removing Invoke-ShellcodeMSILMatt Graeber1-4/+0
This was only ever intended to be a PoC. I'll bring this back if requested but it exhibits duplicate functionality.
2015-09-23Adding Invoke-WmiCommandMatt Graeber1-0/+4
2014-11-16Moving all RE functionality to PowerShellArsenalmattifestation1-92/+8
https://github.com/mattifestation/PowerShellArsenal PowerSploit will now stay true to its roots of being a purely offensive PowerShell module.
2014-10-01Added Install-SSP and Get-SecurityPackagesmattifestation1-0/+8
2014-09-13Updating the script style guide #2mattifestation1-1/+1
2014-09-13Updating the script style guidemattifestation1-1/+1
2014-08-29Adding MBR infector Set-MasterBootRecordmattifestation1-0/+5
2014-08-09Removing New-Object proxy functionmattifestation1-4/+0
2014-06-30Updated Get-VaultCredential name in READMEmattifestation1-1/+1
2014-06-19Adding Mayhem module and Set-CriticalProcessmattifestation1-0/+8
2014-06-19Removing Watch-BlueScreenmattifestation1-4/+0
This vulnerability was patched a while ago making this function largely irrelevant.
2014-05-30Issue #43 - Adding Get-VaultCredentialsmattifestation1-0/+4
Displays Windows vault credential objects including cleartext web credentials.
2014-03-16Fixed error in PowerSploit ADS removal one-linermattifestation1-1/+1
2014-03-01Added Get-VolumeShadowCopy and Mount-VolumeShadowCopymattifestation1-0/+8
2014-02-23#31 Persistence module function nouns are now singularmattifestation1-2/+2
The function names New-UserPersistenceOption and New-ElevatedPersistenceOptionNew-ElevatedPersistenceOption now conform to PowerShell naming best practices.
2014-02-12Changed Inject-LogonCredentials name to Invoke-CredentialInjectionmattifestation1-1/+1
2014-02-03Add Get-Entropymattifestation1-0/+4
2013-12-22Added Capstone Engine PowerShell bindingmattifestation1-0/+8
Consider this to be an alpha release until the C# binding is published.
2013-11-18Added Inject-LogonCredentials to READMEmattifestation1-0/+4
2013-11-04Added Invoke-TokenManipulation to README.mdmattifestation1-0/+4
2013-10-05Updated usage tipmattifestation1-1/+4
2013-10-05Added a usage tipmattifestation1-0/+2
Added a one-liner for PSv3 that will remove the annoying warnings that are displayed when importing scripts downloaded from the Internet.
2013-10-05Slight clarification to license statementmattifestation1-1/+1
2013-10-01Modified license verbiagemattifestation1-1/+1
2013-10-01Added exfil script synopses to README.mdmattifestation1-0/+8
Descriptions for Invoke-NinjaCopy and Invoke-Mimikatz were added to the readme.
2013-09-29Added Get-LibSymbolsmattifestation1-0/+4
Get-LibSymbols parses Microsoft .lib files and displays decorated and undecorated symbols.
2013-08-29Added ProcessModuleTrace cmdletsmattifestation1-0/+12
Added *-ProcessModuleTrace cmdlets to trace details when modules are loaded into a process. These can be useful for malware analysis.
2013-08-17Removing Get-PEArchitectureMatt Graeber1-4/+0
This functionality is present and maintained in Get-PEHeader.
2013-07-09Added Get-ObjDumpMatt Graeber1-0/+4
Get-ObjDump parses and return information about one or more Windows object files. It is similar to dumpbin but it returns objects!
2013-07-06Added Invoke-Portscan to READMEMatt Graeber1-0/+4
2013-07-03Updated Get-GPPPasswordMatt Graeber1-4/+4
2013-06-30Added Get-KeystrokesMatt Graeber1-0/+4
Get-Keystrokes is a PowerShell keylogger
2013-06-05Added New-Object proxy functionMatt Graeber1-0/+4
You can provide a CLSID (i.e. a Guid) to New-Object via the -ComObject parameter in addition to a ProgId.
2013-05-31Added Invoke-ReflectivePEInjectionMatt Graeber1-2/+2
Another awesome addition from Joe Bialek. Invoke-ReflectivePEInjection is a vast improvement over Invoke-ReflectiveDllInjection. It adds the following features: * Now supports loading exe files in memory * Supports reflective dll injection into a remote process * Additional sample Visual Studio solutions
2013-05-15Added Out-MinidumpMatt Graeber1-0/+4
Out-Minidump writes a process dump file with all process memory to disk. This is similar to running procdump.exe with the '-ma' switch.
2013-05-13Added Watch-BlueScreenMatt Graeber1-0/+4
Causes a blue-screen (bugcheck) to occur.
2013-05-12Added Get-NtSystemInformationMatt Graeber1-2/+6
Get-NtSystemInformation is a wrapper function for NtQuerySystemInformation. It is a swiss-army knife tool for obtaining internal OS information. It can currently be used to query the following: global flags, handles, objects, kernel pool allocations, and loaded kernel modules
2013-04-06Adding reflective DLL loading capabilityMatt Graeber1-0/+4
Adding Invoke-ReflectiveDllInjection. PowerSploit now has reflective DLL loading capabilities!!! Thanks to Joe Bialek @JosephBialek for writing this awesome code!
2013-04-05Adding Invoke-ShellcodeMSILMatt Graeber1-0/+4
Invoke-ShellcodeMSIL executes shellcode without making any Win32 function calls.
2013-04-04Adding Persistence moduleMatt Graeber1-190/+206
2013-01-20PowerSploit is now a respectable module!bitform1-31/+54
PowerSploit just got a complete makeover! It is now comprised of a collection of modules grouped by category.
2013-01-20Updated PowerSploit README with proper markdownbitform1-0/+168
generated by cgit v1.2.3 (git 2.39.1) at 2025-05-25 22:38:57 +0000