PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. CloudTrail logs) and mapping them to the original user input a…

AD Scripts

Azure Governance Visualizer aka AzGovViz is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM, Storage and Microsof…

The Azure Optimization Engine is an extensible solution designed to generate optimization recommendations for your Azure environment. See it like a fully customizable Azure Advisor.

The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organ…

Place to store our documentation, code samples, etc for public consumption.

Welcome to the Microsoft Defender for Cloud community repository

Code samples and extended documentation to support the guidance provided in the Microsoft Cloud Adoption Framework

The open source gold standard to centrally manage and deploy email signatures and out-of-office replies for Outlook and Exchange

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.

🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitimate programs as well as malware to achieve persistence.

Automation library for Metasploit

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

The Microsoft Defender for Office 365 Recommended Configuration Analyzer (ORCA)

Azure VM Image Builder Samples Repo

PowerShell framework to assess Azure security

Six Degrees of Domain Admin

Microsoft Azure Guide. Learn all about Microsoft Azure Tools, Services, and Certifications.

Aggressor scripts I've made for Cobalt Strike

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+

A Collection of Scripts Which Disable / Remove Windows 10 Features and Apps

Create a high level interactive HTML report for you Active Directory environment using PowerShell

Active Directory Assessment and Privilege Escalation Script