## https://sploitus.com/exploit?id=E8CAEBAB-DF2A-5FD6-9616-E42264C294EC
This is an offensive PowerShell host application written in C# that runs PowerShell commands and functions within a PowerShell runspace environment. It includes various offensive PowerShell modules and binaries to facilitate post-exploitation activities, such as bypassing mitigations and creating awareness within Active Directory environments.
The tool can be used to perform modern attacks within Active Directory environments and create awareness within the Blue team so they can build the right defense strategies. It includes a bypass method for Amsi (Antimalware Scan Interface) within Windows 10 and has various other features such as:
Decompression of binary files to Base64 strings
Compressing binary files to Base64 strings
Conversion of PS1 files to Base64 strings
Bypassing Amsi using a custom implementation
Decompression of compressed files using GZipStream
The tool can be compiled using Microsoft Visual Studio and built for the x64/x86 platform. It can be run with or without the AutoMasq option, which allows the user to masquerade the process as another process, such as Notepad.exe. The tool also includes an option to start p0wnedShell using another Parent Process ID, which can be used to spawn a p0wnedShell process with system privileges.