Ahaz1701 / EvilWorkerLinks
A new AiTM attack framework — based on leveraging service workers — designed to conduct credential phishing campaigns. Thanks to its minimalist, robust, and highly adaptable architecture, this solution can be easily deployed on PaaS.
☆72Updated 2 months ago
Alternatives and similar repositories for EvilWorker
Users that are interested in EvilWorker are comparing it to the libraries listed below
Sorting:
- ☆91Updated 8 months ago
- Deploy a phishing infrastructure on the fly.☆75Updated 9 months ago
- IPSpinner works as a local proxy that redirects requests through external services.☆79Updated 6 months ago
- Living off the land searches for explorer and sharepoint☆91Updated 5 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated 9 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆87Updated 7 months ago
- A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory.☆56Updated 3 months ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆112Updated 2 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …☆75Updated 11 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆78Updated 10 months ago
- Vast.ai Password Kracking☆86Updated 3 months ago
- Dump Kerberos tickets☆40Updated 2 months ago
- Scripts that automate portions of pentests.☆52Updated 2 months ago
- CaptainCredz is a modular and discreet password-spraying tool.☆131Updated 2 months ago
- This is my starred repositories including the description for each tool. Makes search/filter over them easier.☆54Updated 7 months ago
- A small red team course☆39Updated 2 years ago
- This tool exploits Golden DMSA attack against delegated Managed Service Accounts.☆78Updated 2 months ago
- Your Skyfall Infrastructure Pack☆76Updated last month
- Permanently disable EDRs as local admin☆116Updated 3 months ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 8 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆36Updated last year
- ☆147Updated 5 months ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆80Updated last year
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆54Updated last month
- ☆61Updated last year
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated last year
- ☆71Updated 6 months ago
- PoC that downloads an executable from a public SSL certificate☆127Updated 2 months ago
- Lifetime AMSI bypass.☆35Updated 5 months ago