BorderGate

Offensive PowerShell

Using GetDelegateForFunctionPointer to execute Win32 API’s from memory in Powershell.

A list of common WinDBG commands.

Executing DLL’s from memory.

Injecting DLL’s into remote processes.

Writing stagers to interact with foreign C2 frameworks.

A Metasploit command reference.

Changing default security descriptor properties to escalate from a child to parent domain.

Exploiting common Tomcat vulnerabilities.

Adding additional security auditing tools to Kali.

Compromising MSSQL databases, and escalating privileges.

Extracting gMSA service accounts from child domains.

Modifying SID History values to compromise parent domains.