| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2016-03-18 | Bug fix in Find-GPOLocation | Harmj0y | 1 | -5/+9 | |
| 2016-03-15 | Added Get-SiteName to find the site a computer is a part of | Harmj0y | 1 | -101/+288 | |
| Added -ComputerName parameter to Get-NetGPO to enumerate all GPOs a given computer has applied Fixed bug in Find-GPOComputerAdmin and added site enumeration for GPO links | |||||
| 2016-03-11 | Additional error checking in Get-DFSshare | Harmj0y | 1 | -9/+10 | |
| 2016-03-07 | Parse DFSv1 PKT | Meatballs | 1 | -6/+198 | |
| 2016-03-09 | Fixed bug with Get-NetGroupMember and computer accounts. | Harmj0y | 1 | -33/+15 | |
| samaccounttype enumeration now more accurate. | |||||
| 2016-03-09 | fix for Find-GPOComputerAdmin | Harmj0y | 1 | -3/+15 | |
| 2016-03-09 | Bug fix for Invoke-EnumerateLocalAdmin | Harmj0y | 1 | -5/+4 | |
| 2016-03-09 | Removed Set-MacAttribute and Copy-ClonedFile | Harmj0y | 2 | -234/+117 | |
| Combined Convert-NT4toCanonical and Convert-DomainSimpletoNT4 into Convert-ADName | |||||
| 2016-03-07 | Added New-GPOImmediateTask | Harmj0y | 1 | -12/+220 | |
| 2016-03-07 | DomainOnly tweak | Harmj0y | 1 | -5/+4 | |
| 2016-03-07 | Added -DomainOnly flag to Invoke-EnumerateLocalAdmin | Harmj0y | 1 | -9/+23 | |
| 2016-03-07 | renamed output field for Get-NetLocalGroup API | Harmj0y | 1 | -1/+1 | |
| 2016-03-07 | Added NetLocalGroupGetMembers enumeration method for Get-NetLocalGroup with ↵ | Harmj0y | 1 | -151/+302 | |
| the -API flag Fixed threading specification in most threaded functions. | |||||
| 2016-03-06 | Added additional fields to Get-NetLocalGroup results. | Harmj0y | 1 | -22/+63 | |
| 2016-02-28 | Modified output of Find-GPOLocation to return more object information. | Harmj0y | 1 | -26/+48 | |
| 2016-02-28 | -fixed several bugs in Find-GPOLocation (-GroupName now works properly and ↵ | Harmj0y | 1 | -132/+147 | |
| Sites returned) -Find-GPOLocation with no arguments now returns all mappings -fixed parsing issue in Get-NetGPOGroup- names now properly extracted from restricted group templates | |||||
| 2016-02-11 | Most ldap-based search functions now accept a -Credential argument for ↵ | Harmj0y | 1 | -1084/+1427 | |
| querying from non-domain joined machines without a runas Changed several functions to filters, where appropriate. Get-NetShare, Get-NetSession, Get-NetLoggedOn, Get-NetRDPSession, Invoke-CheckLocalAdminAccess, Get-LastLoggedOn, Get-CachedRDPConnection, Get-NetProcess are now filters, better handle pipeline input, and now return an augmented result object with the queried ComputerName as a field Replaced RemoteUserName/RemotePassword with -Credential parameter in Get-CachedRDPConnection and Get-NetProcess modified output object for Get-NetShare to be a proper object Various bug fixes and better parameter validation | |||||
| 2015-12-29 | Added Find-ManagedSecurityGroups to readme | Stuart Morgan | 1 | -0/+2 | |
| 2015-12-29 | Sorted the recon.psd1 module import into alphabetical order | Stuart Morgan | 1 | -51/+51 | |
| 2015-12-29 | Added reference to function to powersploit.psd1 and recon.psd1 | Stuart Morgan | 1 | -0/+1 | |
| 2015-12-28 | Added Find-ManagedSecurityGroups | Stuart Morgan | 1 | -0/+71 | |
| 2015-12-18 | Set all module versions to 3.0 | Matt Graeber | 1 | -58/+1 | |
| Also cleaned up some module manifest cruft. | |||||
| 2015-12-16 | Removed version numbers from scripts | Matt Graeber | 1 | -6/+0 | |
| A module should maintain a version number not the individual scripts. | |||||
| 2015-12-16 | Removed all version numbers from scripts | Matt Graeber | 1 | -4/+0 | |
| Scripts in a module should not be individually versioned. Only the module should be versioned. | |||||
| 2015-12-14 | Get-NetDomain now not called if -ComputerName or -ComputerFile are passed ↵ | Harmj0y | 1 | -108/+122 | |
| for meta functions, in order to prevent failure when running on a non-domain joined machine took out FQDN Pester tests from Recon.tests.ps1 that used $env:userdnsdomain | |||||
| 2015-12-11 | Added Invoke-DowngradeAccount to set an account to use reversible encryption. | Harmj0y | 1 | -1/+117 | |
| 2015-12-11 | Domain local group query fix. | Harmj0y | 1 | -30/+140 | |
| Added ConvertFrom-UACValue to convert binary UAC values to human readable format. Corrected logic in Set-ADObject. | |||||
| 2015-12-03 | Integration of PowerView into ./Recon/ | Harmj0y | 4 | -16/+11260 | |
| 2015-11-04 | Normalizing all files to ascii encoding | Matt Graeber | 1 | -2/+2 | |
| 2015-11-04 | Revert "Normalizing all files to ascii encoding" | Matt Graeber | 1 | -0/+580 | |
| This reverts commit 5a812ce82361bf65443fc9c545c091e21e98fe80. | |||||
| 2015-11-04 | Normalizing all files to ascii encoding | Matt Graeber | 1 | -580/+0 | |
| 2014-04-28 | Fixing error in script | clymb3r | 1 | -2/+0 | |
| 2014-04-16 | Fixing formatting | clymb3r | 2 | -1/+2 | |
| 2014-04-16 | Fixing garbage put in by merge | clymb3r | 2 | -17/+0 | |
| 2014-04-16 | Merge branch 'master' of https://github.com/mattifestation/PowerSploit | clymb3r | 6 | -111/+153 | |
| Conflicts: Recon/Get-ComputerDetails.ps1 Recon/Recon.psd1 | |||||
| 2014-03-16 | Adding internal recon/privesc privesc functions #40 | mattifestation | 2 | -1/+583 | |
| Added the following recon functions written by Joe Bialek (@JosephBialek): - Find-4648Logons - Find-4624Logons - Find-AppLockerLogs - Find-PSScriptsInPSAppLog - Find-RDPClientConnections - Get-ComputerDetails (Combines all of the above functions into a single function) | |||||
| 2014-03-02 | Separating out functions & bug fix | clymb3r | 1 | -295/+438 | |
| All info gathering pieces of this script can now be called individually. Fixed a bug where the user SID wasn't being converted to a username in the RDP function. | |||||
| 2014-02-20 | Adding Get-ComputerDetails recon script | clymb3r | 2 | -1/+439 | |
| Get-ComputerDetails is a recon script which pulls a variety of useful information off a computer which might later be useful by an attacker. This includes: Logons AppLocker process start logs PowerShell logs to find scripts run RDP Client saved servers | |||||
| 2014-01-30 | Merge pull request #26 from obscuresec/master | Matt Graeber | 1 | -105/+130 | |
| Update Invoke-ReverseDnsLookup.ps1 | |||||
| 2014-01-30 | Update Invoke-ReverseDnsLookup.ps1 | Chris Campbell | 1 | -105/+130 | |
| Added pipeline support and verbose statement. | |||||
| 2013-11-13 | Normalized all scripts to ASCII encoding | mattifestation | 4 | -7/+7 | |
| 2013-11-03 | Fix for hostfiles option in powershell 2 | webstersprodigy | 1 | -2/+2 | |
| 2013-10-22 | Fix for hostfiles option in powershell 2 | webstersprodigy | 1 | -2/+2 | |
| 2013-07-06 | Merge branch 'Portscan' of https://github.com/webstersprodigy/PowerSploit ↵ | Matt Graeber | 2 | -2/+1090 | |
| into webstersprodigy-Portscan Conflicts: Recon/Recon.psd1 | |||||
| 2013-07-03 | Updated Get-GPPPassword | Matt Graeber | 2 | -108/+2 | |
| 2013-06-25 | IPv6 support in hosts param | Rich Lundeen | 1 | -11/+14 | |
| 2013-06-18 | fixing EOL spaces (again, sorry) | Rich Lundeen | 1 | -3/+0 | |
| 2013-06-18 | fixing EOL spaces | Rich Lundeen | 1 | -24/+13 | |
| 2013-06-18 | Addressed mattifestation feedback | Rich Lundeen | 1 | -235/+275 | |
| See https://github.com/mattifestation/PowerSploit/pull/6#issuecomment-19289063 1) I like this feedback a lot and took it. 2) I tried going thread only but it got messed up with very large scans. Eventually, I didn't think it was worth the amount of effort to make it reliable with only threads 3) Tried to do this 4) Did this 5) I like the idea in general and I took this one place (top-ports), but not for the two examples you gave. The reasoning is, I want people to be able to specify various options and arrays aren't that flexible. For example, I want people to specify a port list like "80,90,8080-8090". Similar with CIDR, since that's one option, but they could also be specifying hostnames e.g. "google.com,192.168.1.1/24,10.0.0.1" | |||||
| 2013-06-11 | small style update | Rich Lundeen | 1 | -3/+3 | |