Powershell Empire
MS16-032
MS16-032 is a Windows privilege escalation exploit that I adapted to work with Powershell Empire. Although I did not create the proof of concept or the official module, I modified the concept in such a way that it could be loaded as an external source from the framework.
WLRMDR Licensing Balloon Module
Created a module for Empire that can be used for social engineering attempts. This module utilizes the Windows logon reminder service to launch a customized balloon reminder in a user’s taskbar.
Get_Subnet_Ranges Module
Added recon module for discovering subnets based on AD information. The script pulls domain computers, resolves their DNS, determines if they are reachable, and then categorizes them into subnets.