Skip to content
View shohnz's full-sized avatar
23 followers · 346 following

Block or report shohnz

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Lists (2)

Sort Name ascending (A-Z)
Sort by
Name ascending (A-Z) Name descending (Z-A) Newest Oldest Last updated

Starred repositories

122 stars written in PowerShell
Clear filter

PowerShellMafia / PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

PowerShell 12,981 4,717 Updated Aug 17, 2020

zoicware / RemoveWindowsAI

Force Remove Copilot, Recall and More in Windows 11

PowerShell 11,585 388 Updated May 11, 2026

samratashok / nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

PowerShell 9,908 2,547 Updated Apr 25, 2024

EmpireProject / Empire

Empire is a PowerShell and Python post-exploitation agent.

PowerShell 7,835 2,920 Updated Jan 19, 2020

mandiant / commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

PowerShell 7,590 1,342 Updated Oct 16, 2025

W4RH4WK / Debloat-Windows-10

A Collection of Scripts Which Disable / Remove Windows 10 Features and Apps

PowerShell 6,158 804 Updated Sep 23, 2025

S3cur3Th1sSh1t / WinPwn

Automation for internal Windows Penetrationtest / AD-Security

PowerShell 3,665 541 Updated Aug 28, 2025

olafhartong / sysmon-modular

A repository of sysmon configuration modules

PowerShell 3,033 645 Updated Aug 21, 2024

mgeeky / Penetration-Testing-Tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

PowerShell 2,941 545 Updated Jun 27, 2023

Integration-IT / Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

PowerShell 2,736 515 Updated Jul 6, 2025

cisagov / ScubaGear

Automation to assess the state of your M365 tenant against CISA's baselines

PowerShell 2,565 359 Updated May 11, 2026

Cloud-Architekt / AzureAD-Attack-Defense

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

PowerShell 2,518 364 Updated Apr 20, 2026

MicrosoftDocs / PowerShell-Docs

The official PowerShell documentation sources

PowerShell 2,456 1,698 Updated May 5, 2026

api0cradle / UltimateAppLockerByPassList

The goal of this repository is to document the most common techniques to bypass AppLocker.

PowerShell 2,061 364 Updated Sep 11, 2023

MicrosoftDocs / Virtualization-Documentation

Place to store our documentation, code samples, etc for public consumption.

PowerShell 1,909 1,524 Updated Feb 17, 2026

StefanScherer / packer-windows

Forked from joefitzgerald/packer-windows

Windows Templates for Packer: Windows 11, Windows 10, Windows Server 2022, 2019, 2016, also with Docker

PowerShell 1,359 430 Updated Jun 8, 2025

microsoft / CSS-Exchange

Exchange Server support tools and scripts

PowerShell 1,279 391 Updated May 8, 2026

threatexpress / red-team-scripts

A collection of Red Team focused tools, scripts, and notes

PowerShell 1,148 195 Updated Nov 19, 2024

nsacyber / Event-Forwarding-Guidance

Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber

PowerShell 884 166 Updated Nov 17, 2020

Bert-JanP / Incident-Response-Powershell

PowerShell Digital Forensics & Incident Response Scripts.

PowerShell 785 111 Updated Jan 14, 2026

Yamato-Security / WELA-deprecated

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)

PowerShell 778 79 Updated Feb 3, 2023

tomwechsler / Active_Directory_Advanced_Threat_Hunting

This repo is about Active Directory Advanced Threat Hunting

PowerShell 648 89 Updated Feb 17, 2025

ANSSI-FR / ADTimeline

Timeline of Active Directory changes with replication metadata

PowerShell 524 64 Updated Mar 21, 2025

Whitecat18 / Powershell-Scripts-for-Hackers-and-Pentesters

An List of my Powershell scripts, commands and Blogs for windows Red Teaming.

PowerShell 489 65 Updated Mar 29, 2026

TonyPhipps / Meerkat

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

PowerShell 484 84 Updated Nov 15, 2024

CrowdStrike / psfalcon

PowerShell for CrowdStrike's OAuth2 APIs

PowerShell 468 82 Updated May 11, 2026

jseerden / IntuneBackupAndRestore

PowerShell Module that queries Microsoft Graph, and allows for cross-tenant Backup & Restore actions of your Intune Configuration.

PowerShell 440 127 Updated Dec 16, 2025

KelvinTegelaar / RunAsUser

a PowerShell module that allows you to impersonate the currently logged on user, while running PowerShell.exe as system.

PowerShell 428 95 Updated Jan 9, 2025

nathanmcnulty / nathanmcnulty

PowerShell 421 41 Updated Apr 28, 2026

olafhartong / ATTACKdatamap

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

PowerShell 357 60 Updated Nov 3, 2020
Next

Starred topics