Ahaz1701 / EvilWorkerLinks
A new AiTM attack framework — based on leveraging service workers — designed to conduct credential phishing campaigns. Thanks to its minimalist, robust, and highly adaptable architecture, this solution can be easily deployed on PaaS.
☆63Updated 2 months ago
Alternatives and similar repositories for EvilWorker
Users that are interested in EvilWorker are comparing it to the libraries listed below
Sorting:
- ☆73Updated this week
- IPSpinner works as a local proxy that redirects requests through external services.☆70Updated 4 months ago
- Living off the land searches for explorer and sharepoint☆89Updated 3 months ago
- ☆109Updated 8 months ago
- Scripts that automate portions of pentests.☆52Updated 3 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆85Updated 4 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 10 months ago
- ☆89Updated 6 months ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆106Updated 3 weeks ago
- Deploy a phishing infrastructure on the fly.☆72Updated 7 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆77Updated 8 months ago
- This tool exploits Golden DMSA attack against delegated Managed Service Accounts.☆60Updated 2 weeks ago
- ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …☆75Updated 9 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆86Updated 7 months ago
- A framework for OAuth 2.0 device code authentication grant flow phishing☆46Updated 2 years ago
- A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure☆44Updated last month
- Your Skyfall Infrastructure Pack☆76Updated 2 months ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆42Updated last year
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 6 months ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆79Updated last year
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆39Updated 6 months ago
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆87Updated 4 months ago
- Discord C2 Profile for Mythic☆31Updated 5 months ago
- ☆159Updated last year
- A Python POC for CRED1 over SOCKS5☆151Updated 9 months ago
- C2 writen in Rust & Go powered by Tor network.☆120Updated 2 weeks ago
- CaptainCredz is a modular and discreet password-spraying tool.☆120Updated last week
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆77Updated last month
- Python alternative to Mimikatz lsadump::dcshadow☆144Updated last month