CanIPhish / Phishious
An open-source Secure Email Gateway (SEG) evaluation toolkit designed for red-teamers.
☆472Updated last year
Alternatives and similar repositories for Phishious:
Users that are interested in Phishious are comparing it to the libraries listed below
- VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit☆429Updated last year
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.☆436Updated last year
- An Office365 User Attack Tool☆630Updated 10 months ago
- User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin☆432Updated 11 months ago
- Hiding GoPhish from the boys in blue☆174Updated 2 years ago
- AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…☆295Updated last year
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆485Updated 2 years ago
- Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The…☆345Updated 2 years ago
- Ansible playbook to deploy a phishing engagement in the cloud.☆217Updated 2 years ago
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆468Updated last year
- A fast enumeration tool for Windows Active Directory Pentesting written in Go☆278Updated 2 years ago
- Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and othe…☆175Updated 2 years ago
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆456Updated 2 years ago
- A PowerShell armoury for security guys and girls☆464Updated last year
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆250Updated last year
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆383Updated 10 months ago
- Password spraying tool and Bloodhound integration☆219Updated 3 weeks ago
- Python3 terminal application that contains 405 Neo4j cyphers for BloodHound data sets and 388 GUI cyphers☆374Updated 4 months ago
- User enumeration with Microsoft Teams API☆167Updated 3 years ago
- A tool for pointesters to find candies in SharePoint☆242Updated 2 years ago
- Password Hunter in Active Directory☆197Updated 2 years ago
- Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.☆300Updated 2 years ago
- Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.☆453Updated 6 months ago
- Tricks the target into enabling content (macros) with fake messages. Once enabled, uses macros to reduce the risk of suspision from targe…☆166Updated 3 years ago
- Maximizing BloodHound. Max is a good boy.☆503Updated 2 weeks ago
- Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover v1, or office.com login page.☆251Updated 8 months ago
- "Golden" certificates☆650Updated 5 months ago
- An interactive command prompt for red teaming and pentesting. Automatically pushes commands through SOCKS4/5 proxies via proxychains. Opt…☆210Updated 2 years ago
- Script collection to bypass Network Access Control (NAC, 802.1x)☆279Updated 3 months ago
- A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user☆252Updated 2 years ago