WinPwn

WinPwn is a PowerShell-based toolkit for automating internal Windows penetration testing and Active Directory reconnaissance. It streamlines many manual steps by integrating reconnaissance modules like Seatbelt, Inveigh, Rubeus, and PrivescCheck. With proxy auto‑detection, endpoint enumeration, and exploitation routines, it's widely used in red team and blue team tool chains.

Features

Automated AD and system recon modules (e.g., Seatbelt, Rubeus)
Proxy auto-recognition and integration
Reconnaissance and exploitation scripts standardized
Bypasses common defenses like AMSI via in-memory patching
Modular updates via GitHub activity tracking
Designed for internal pentesting in Windows domains

Project Samples

Project Activity

See All Activity >

License

BSD License

Follow WinPwn

WinPwn Web Site

Other Useful Business Software

Pylon is an All-in-one B2B Support Platform for modern B2B businesses.

Pylon is a modern support system that integrates with all B2B channels like Slack and Team.

We bring together everything a post-sales teams team needs including a ticketing system, B2B omnichannel integrations (Slack Connect, Microsoft Teams), modern chat widget, knowledge base, AI support bot, account management, customer marketing, and more.

Learn More

Rate This Project

User Reviews

Be the first to post a review of WinPwn!

Additional Project Details

Operating Systems

Windows

Programming Language

PowerShell

Related Categories

PowerShell Security Software

Registered

2025-07-28

Similar Business Software

ManageEngine Endpoint Central

ManageEngine Endpoint Central is built to secure the digital workplace while also giving IT teams complete control over their enterprise endpoints. It delivers a security-first approach by combining advanced endpoint protection with comprehensive management, allowing IT teams to manage the...

See Software
ManageEngine ADManager Plus

ADManager Plus is a simple, easy-to-use Windows Active Directory (AD) management and reporting solution that helps AD administrators and help desk technicians in their day-to-day activities. With a centralized and intuitive web-based GUI, the software handles a variety of complex tasks like bulk...

See Software
Criminal IP

Criminal IP equips security teams with the actionable Threat Intelligence needed to proactively identify, analyze, and respond to emerging threats. Powered by AI and OSINT, it delivers threat scoring, reputation data, and real-time detection of a wide array of malicious indicators, ranging from...

See Software
ToogleBox

A secured platform helping Super Admins, IT Managers, Marketing Managers, and HR Managers automate, secure, and manage Google Workspace functionalities. Running natively on GCP, our modular suite bridges the gap between standard Google functionalities and enterprise governance. ToogleBox Core...

See Software
Astra Pentest

Astra’s Pentest is a comprehensive penetration testing solution with an intelligent automated vulnerability scanner coupled with in-depth manual pentesting. On top of 10000+ tests including security checks for all CVEs mentioned in the OWASP top 10, and SANS 25, the automated scanner also...

See Software
Blumira

Empower Your Current Team to Achieve Enterprise-Level Security An all-in-one solution with SIEM, endpoint visibility, 24/7 monitoring, and automated response to reduce complexity, increase visibility and speed up time to respond. We handle the security heavy lifting, so you get time back...

See Software