This group is for any native Windows package that runs via wine.

Tool count: 137

BlackArch windows
Name Version Description Homepage
3proxy-win32 0.8.13 Tiny free proxy server.
adape-script 43.4d0b9ff Active Directory Assessment and Privilege Escalation Script.
agafi 1.1 A gadget finder and a ROP-Chainer tool for x86 platforms.
analyzepesig 0.0.0.5 Analyze digital signature of PE file.
antiransom 5 A tool capable of detect and stop attacks of Ransomware using honeypots.
atstaketools 0.1 This is an archive of various @Stake tools that help perform vulnerability scanning and analysis, information gathering, password auditing, and forensics.
backorifice 1.0 A remote administration system which allows a user to control a computer across a tcpip connection using a simple console or GUI application.
browselist 1.4 Retrieves the browse list ; the output list contains computer names, and the roles they play in the network.
brute12 1 A tool designed for auditing the cryptography container security in PKCS12 format.
brutus 2 One of the fastest, most flexible remote password crackers you can get your hands on.
cachedump 1.1 A tool that demonstrates how to recover cache entry information: username and hashed password (called MSCASH).
certipy 4.8.2.r0.g2780d53 Active Directory Certificate Services enumeration and abuse.
chrome-decode 0.1 Chrome web browser decoder tool that demonstrates recovering passwords.
chromensics 1.0 A Google chrome forensics tool.
conpass 0.1.1 Password spraying in AD environment avoing account locking.
crackmapexec-pingcastle 9.16340d2 NetExec & CrackMapExec module that execute PingCastle on a remote machine.
dark-dork-searcher 1.0 Dark-Dork Searcher.
darkarmour 4.f10228a Store and execute an encrypted windows binary from inside memory, without a single bit touching disk.
de4dot 3.1.41592 .NET deobfuscator and unpacker.
directorytraversalscan 1.0.1.0 Detect directory traversal vulnerabilities in HTTP servers and web applications.
dnspy 6.1.8 .NET debugger and assembly editor.
donpapi V1.2.0.r10.g51767fc Dumping revelant information on compromised targets without AV detection with DPAPI.
dotpeek 2021.3.3 Free .NET Decompiler and Assembly Browser.
dumpacl 0.1 Dumps NTs ACLs and audit settings.
dumpusers 1.0 Dumps account names and information even though RestrictAnonymous has been set to 1.
eraser 6.2.0.2992 Windows tool which allows you to completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns.
etherchange 1.1 Can change the Ethernet address of the network adapters in Windows.
etherflood 1.1 Floods a switched network with Ethernet frames with random hardware addresses.
filefuzz 1.0 A binary file fuzzer for Windows with several options.
fport 2.0 Identify unknown open ports and their associated applications.
fred 0.1.1 Cross-platform M$ registry hive editor.
fuzztalk 1.0.0.0 An XML driven fuzz testing framework that emphasizes easy extensibility and reusability.
gene 78.faf8cc0 Signature Engine for Windows Event Logs.
gplist 1.0 Lists information about the applied Group Policies.
grabitall 1.1 Performs traffic redirection by sending spoofed ARP replies.
gsd 1.1 Gives you the Discretionary Access Control List of any Windows NT service you specify as a command line option.
gtalk-decode 0.1 Google Talk decoder tool that demonstrates recovering passwords from accounts.
handle 0.1 An small application designed to analyze your system searching for global objects related to running process and display information for every found object, like tokens, semaphores, ports, files,..
hekatomb 107.bdd53cf Extract and decrypt all credentials from all domain computers using DPAPI.
hollows-hunter 0.3.9 Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
hookanalyser 3.4 A hook tool which can be potentially helpful in reversing applications and analyzing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer.
httpbog 1.0.0.0 A slow HTTP denial-of-service tool that works similarly to other attacks, but rather than leveraging request headers or POST data Bog consumes sockets by slowly reading responses.
httprecon 7.3 Tool for web server fingerprinting, also known as http fingerprinting.
httprint-win32 301 A web server fingerprinting tool (Windows binaries).
hyperion-crypter 2.3.1 A runtime encrypter for 32-bit and 64-bit portable executables.
ikeprobe 0.1 Determine vulnerabilities in the PSK implementation of the VPN server.
intercepter-ng 1.0 A next generation sniffer including a lot of features: capturing passwords/hashes, sniffing chat messages, performing man-in-the-middle attacks, etc.
inzider 1.2 This is a tool that lists processes in your Windows system and the ports each one listen on.
juicy-potato 53.744d321 A sugared version of RottenPotatoNG, with a bit of juice.
justdecompile 22018 The decompilation engine of JustDecompile.
kekeo 2.2.0_20211214 A little toolbox to play with Microsoft Kerberos in C.
kerbcrack 1.3d3 Kerberos sniffer and cracker for Windows.
klogger 1.0 A keystroke logger for the NT-series of Windows.
lethalhta 2.5602402 Lateral Movement technique using DCOM and HTA.
lolbas 192.d148d27 Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts).
malwareanalyser 3.3 A freeware tool to perform static and dynamic analysis on malware.
mbenum 1.5.0 Queries the master browser for whatever information it has registered.
memimager 1.0 Performs a memory dump using NtSystemDebugControl.
mimikatz 2.2.0_20220919 A little tool to play with Windows security.
mingsweeper 1.00 A network reconnaissance tool designed to facilitate large address space,high speed node discovery and identification.
modifycerttemplate 7.4c35708 Aid operators in modifying ADCS certificate templates so that a created vulnerable state can be leveraged for privilege escalation.
mrkaplan 1.1.1 Help red teamers to stay hidden by clearing evidence of execution.
msvpwn 65.328921b Bypass Windows' authentication via binary patching.
nbname 1.0 Decodes and displays all NetBIOS name packets it receives on UDP port 137 and more!
nbtenum 3.3 A utility for Windows that can be used to enumerate NetBIOS information from one host or a range of hosts.
netbus 1.6 NetBus remote administration tool
netexec-pingcastle 9.16340d2 NetExec & CrackMapExec module that execute PingCastle on a remote machine.
netripper 84.c763bd0 Smart traffic sniffing for penetration testers.
netstumbler 0.4.0 Well-known wireless AP scanner and sniffer.
nirsoft 1.23.30 Unique collection of small and useful freeware utilities.
nishang 0.7.6 Using PowerShell for Penetration Testing.
ntds-decode 0.1 This application dumps LM and NTLM hashes from active accounts stored in an Active Directory database.
orakelcrackert 1.00 This tool can crack passwords which are encrypted using Oracle's latest SHA1 based password protection algorithm.
osslsigncode 333.b967175 A small tool that implements part of the functionality of the Microsoft tool signtool.exe.
pafish 193.b497899 A demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
pe-bear 0.6.7.3 A freeware reversing tool for PE files.
pe-sieve 0.3.9 Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
periscope 3.2 A PE file inspection tool.
petools 1.9.762 Portable executable (PE) manipulation toolkit.
pextractor 0.18b A forensics tool that can extract all files from an executable file created by a joiner or similar.
php-vulnerability-hunter 1.4.0.20 An whitebox fuzz testing tool capable of detected several classes of vulnerabilities in PHP web applications.
pingcastle 3.2.0.1 Active Directory scanning tool.
pmap 1.10 Passively discover, scan, and fingerprint link-local peers by the background noise they generate (i.e. their broadcast and multicast traffic).
pmdump 1.2 A tool that lets you dump the memory contents of a process to a file without stopping the process.
powercloud 21.0928303 Deliver powershell payloads via DNS TXT via CloudFlare using PowerShell.
powerlessshell 115.2a87166 Run PowerShell command without invoking powershell.exe.
powerops 32.13fe55b PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier".
powershdll 72.62cfa17 Run PowerShell with rundll32. Bypass software restrictions.
ppee 1.12 A Professional PE file Explorer for reversers, malware researchers and those who want to statically inspect PE files in more details.
promiscdetect 1.0 Checks if your network adapter(s) is running in promiscuous mode, which may be a sign that you have a sniffer running on your computer.
pstoreview 1.0 Lists the contents of the Protected Storage.
pwdump 7.1 Extracts the binary SAM and SYSTEM file from the filesystem and then the hashes.
python2-minidump 19.749e6da Python library to parse and read Microsoft minidump file format.
python2-minikerberos 17.e7e8d0a Kerberos manipulation library in pure Python.
radiography 2 A forensic tool which grabs as much information as possible from a Windows system.
rasenum 1.0 A small program which lists the information for all of the entries in any phonebook file (.pbk).
regreport 1.6 Windows registry forensic analysis tool.
regview 1.3 Open raw Windows NT 5 Registry files (Windows 2000 or higher).
resourcehacker 5.1.8 Resource compiler and decompiler for Windows® applications.
rpak 1.0 A collection of tools that can be useful for doing attacks on routing protocols.
rpcsniffer 7.9fab095 Sniffs WINDOWS RPC messages in a given RPC server process.
rpctools 1.0 Contains three separate tools for obtaining information from a system that is running RPC services
setowner 1.1 Allows you to set file ownership to any account, as long as you have the "Restore files and directories" user right.
shad0w 387.d35b9dc A modular C2 framework designed to successfully operate on mature environments.
shed 2.0.0 .NET runtime inspector.
sigspotter 1.0 A tool that search in your HD to find which publishers has been signed binaries in your PC.
sipscan 0.1 A sip scanner.
skype-dump 0.1 This is a tool that demonstrates dumping MD5 password hashes from the configuration file in Skype.
smbrelay 3 SMB / HTTP to SMB replay attack toolkit.
snitch 1.2 Turn back the asterisks in password fields to plaintext passwords.
snowman 0.1.3 A native code to C/C++ decompiler, see the examples of generated code.
snscan 1.05 A Windows based SNMP detection utility that can quickly and accurately identify SNMP enabled devices on a network.
spade 114 A general-purpose Internet utility package, with some extra features to help in tracing the source of spam and other forms of Internet harassment.
sqldict 2.1 A dictionary attack tool for SQL Server.
sqlping 4 SQL Server scanning tool that also checks for weak passwords using wordlists.
sqlpowerinjector 1.2 Application created in .Net 1.1 that helps the penetration tester to find and exploit SQL injections on a web page.
streamfinder 1.2 Searches for Alternate Data Streams (ADS).
sub7 2.2 A remote administration tool. No further comments ;-)
superscan 4.1 Powerful TCP port scanner, pinger, resolver.
sysinternals-suite 6.4 Sysinternals tools suite.
uacme 282.ce6fb5f Defeating Windows User Account Control.
unsecure 1.2 Bruteforces network login masks.
upnp-pentest-toolkit 1.1 UPnP Pentest Toolkit for Windows.
wce 1.41beta A security tool to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes, plaintext passwords and Kerberos tickets).
wifichannelmonitor 1.70 A utility for Windows that captures wifi traffic on the channel you choose, using Microsoft Network Monitor capture driver.
windivert 2.2.0 A user-mode packet capture-and-divert package for Windows.
windows-binaries 20.7d272da A colleciton of pentesting Windows binaries.
windows-privesc-check 181.9f304fd Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems.
windowsspyblocker 4.38.0 Block spying and tracking on Windows.
winfo 2.0 Uses null sessions to remotely try to retrieve lists of and information about user accounts, workstation/interdomain/server trust accounts, shares (also hidden), sessions, logged in users, and password/lockout policy, from Windows NT/2000/XP.
winhex 20.4 Hex Editor and Disk Editor.
winpwn 408.65f9ed2 Automation for internal Windows Penetrationtest / AD-Security.
winrelay 2.0 A TCP/UDP forwarder/redirector that works with both IPv4 and IPv6.
wpsweep 1.0 A simple ping sweeper, that is, it pings a range of IP addresses and lists the ones that reply.
wups 1.4 An UDP port scanner for Windows.
x-scan 3.3 A general network vulnerabilities scanner for scanning network vulnerabilities for specific IP address scope or stand-alone computer by multi-threading method, plug-ins are supportable.
x64dbg 2024.09.10 An open-source x64/x32 debugger for windows.