Powersploit

PowerSploit is an offensive security framework made by Matt Graeber, using PowerShell (a task automation and configuration management framework from MS). It is a post-exploitation utility in Windows that can perform a range of administrative and low-level tasks without the need to drop executables to disk, thereby evading antivirus products.

Kali

Can be found in Kali Linux → Maintaining Access → OS Backdoors → powersploit or by navigating to /usr/share/powersploit in a terminal.

Windows

To install this PowerShell module, drop the entire PowerSploit folder into one of your PowerShell module directories. The default PowerShell module paths are listed in the $Env:PSModulePath environment variable.

Default per-user module path $Env:HomeDrive$Env:HOMEPATH\Documents\WindowsPowerShell\Modules
Default computer-level module path $Env:windir\System32\WindowsPowerShell\v1.0\Modules

To use the module:

PS C:\> Import-Module PowerSploit

To see the commands imported:

PS C:\> Get-Command -Module PowerSploit

If you’re getting annoying ‘Do you really want to run scripts downloaded from the Internet’ warnings, run:

PS C:\> $Env:PSModulePath.Split(';') | % { if ( Test-Path (Join-Path $_ PowerSploit) ) {Get-ChildItem $_ -Recurse | Unblock-File} }

For help on each individual command, use Get-Help.

The below are the usual cheat sheets. I am gradually building up to each function having an example.


  • Last modified: 2018/09/12 15:00