Nishang
Nishang is a framework and collection of PowerShell scripts and payloads for offensive security and post-exploitation during penetration tests. The scripts were developed based on real-world penetration testing requirements.
Description
Nishang enables the use of PowerShell for offensive security and post-exploitation tasks in penetration tests. It provides a collection of scripts organized into directories covering various functionalities such as backdoors, escalation, execution, gathering, pivoting, and more. The framework includes a PowerShell module (nishang.psm1) and specialized tools like powerpreter.
The scripts are practical tools written by the author during actual penetration tests, making them directly applicable to real-world scenarios. Installed size is 6.41 MB and it depends on kali-defaults.
Directories include Antak-WebShell, Backdoors, Escalation, Execution, Gather, Misc, Pivot, powerpreter, Prasadhak, Scan, and Utility, with additional categories like ActiveDirectory, Bypass, Client, MITM, and Shells shown in the help output.
How It Works
Nishang operates as a PowerShell-based framework with scripts and payloads stored in /usr/share/nishang/. It includes a module file (nishang.psm1) for importing functionalities and organized directories for specific offensive techniques. The 'nishang -h' command displays the directory structure, enabling users to access categorized scripts for tasks like privilege escalation, information gathering, and pivoting via PowerShell execution on target systems.
Installation
sudo apt install nishangFlags
Examples
ls -l /usr/share/nishang/nishang -hsudo apt install nishangls /usr/share/nishang/Backdoorsls /usr/share/nishang/Escalationls /usr/share/nishang/Executionls /usr/share/nishang/Pivotls /usr/share/nishang/powerpreter