Ahaz1701 / EvilWorkerLinks
A new AiTM attack framework — based on leveraging service workers — designed to conduct credential phishing campaigns. Thanks to its minimalist, robust, and highly adaptable architecture, this solution can be easily deployed on PaaS.
☆131Updated 3 months ago
Alternatives and similar repositories for EvilWorker
Users that are interested in EvilWorker are comparing it to the libraries listed below
Sorting:
- ☆92Updated 10 months ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆114Updated 4 months ago
- A Python POC for CRED1 over SOCKS5☆161Updated last year
- pysnaffler☆106Updated 2 months ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 9 months ago
- Living off the land searches for explorer and sharepoint☆90Updated 6 months ago
- ☆71Updated 8 months ago
- OAuth Device Code Phishing Toolkit☆94Updated 2 months ago
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆146Updated last year
- ☆150Updated 6 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆32Updated last month
- Adversary Emulation Framework☆126Updated 4 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆152Updated 2 weeks ago
- ☆161Updated last year
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆92Updated last year
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆104Updated 3 weeks ago
- IPSpinner works as a local proxy that redirects requests through external services.☆106Updated 7 months ago
- Utilities for obfuscating shellcode☆94Updated 2 months ago
- The DCERPC only printerbug.py version☆152Updated 2 weeks ago
- ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication …☆75Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated 10 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆44Updated 2 years ago
- This is my starred repositories including the description for each tool. Makes search/filter over them easier.☆54Updated 8 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆118Updated last year
- ☆118Updated 5 months ago
- Your Skyfall Infrastructure Pack☆87Updated 3 weeks ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆161Updated 4 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim …☆176Updated last month
- Most Responder's configuration power in your hand.☆51Updated 9 months ago