Ahaz1701 / EvilWorkerLinks
A new AiTM attack framework — based on leveraging service workers — designed to conduct credential phishing campaigns. Thanks to its minimalist, robust, and highly adaptable architecture, this solution can be easily deployed on PaaS.
☆65Updated 2 weeks ago
Alternatives and similar repositories for EvilWorker
Users that are interested in EvilWorker are comparing it to the libraries listed below
Sorting:
- IPSpinner works as a local proxy that redirects requests through external services.☆72Updated 5 months ago
- Deploy a phishing infrastructure on the fly.☆74Updated 8 months ago
- ☆80Updated 3 weeks ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆87Updated 5 months ago
- ☆91Updated 7 months ago
- Scripts that automate portions of pentests.☆52Updated 3 weeks ago
- Living off the land searches for explorer and sharepoint☆90Updated 4 months ago
- ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …☆75Updated 10 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆77Updated 9 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 11 months ago
- ☆109Updated 9 months ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆79Updated last year
- This is my starred repositories including the description for each tool. Makes search/filter over them easier.☆53Updated 6 months ago
- Your Skyfall Infrastructure Pack☆76Updated last week
- Discord C2 Profile for Mythic☆32Updated 6 months ago
- Kooky cURL-powered replacement for reverse shell via /dev/tcp☆65Updated 2 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆34Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆87Updated 8 months ago
- ☆160Updated last year
- This tool exploits Golden DMSA attack against delegated Managed Service Accounts.☆69Updated last month
- Red Team Collaboration Infrastructure☆94Updated 4 months ago
- A framework for OAuth 2.0 device code authentication grant flow phishing☆46Updated 2 years ago
- ☆33Updated 2 months ago
- Recon scripts for Red Team and Web blackbox auditing☆26Updated this week
- A Python POC for CRED1 over SOCKS5☆154Updated 10 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆78Updated this week
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 7 months ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆107Updated last month