JumpsecLabs/TokenFlare

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JumpsecLabs/TokenFlare)

JumpsecLabs / TokenFlare

Serverless AITM Simulation Framework for Entra ID and M365

☆213

Alternatives and similar repositories for TokenFlare

Users that are interested in TokenFlare are comparing it to the libraries listed below

Sorting:

garrettfoster13 / CVE-2025-59501
View on GitHub
CVE-2025-59501 POC code
☆25Nov 20, 2025Updated 3 months ago
NTT-Security-Japan / pac2
View on GitHub
Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.
☆36Apr 16, 2024Updated last year
0xTriboulet / ai-postex
View on GitHub
Proof-of-concept implementation of AI-enabled postex DLLs
☆54Sep 10, 2025Updated 5 months ago
dis0rder0x00 / stillepost
View on GitHub
Using Chromium-based browsers as a proxy for C2 traffic.
☆146Dec 6, 2025Updated 2 months ago
redr0nin / CVE-2024-38143
View on GitHub
Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
☆24Feb 5, 2025Updated last year
phishingclub / session-sushi
View on GitHub
Zero dependency browser extension for handling import of cookies, Microsoft 365 OAuth tokens, and Graph API interactions.
☆23Dec 31, 2025Updated 2 months ago
CodeXTF2 / CustomC2ChannelTemplate
View on GitHub
template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
☆101Jan 10, 2026Updated last month
Hackcraft-Labs / SharpShares
View on GitHub
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
☆34Nov 13, 2023Updated 2 years ago
CodeXTF2 / bof_template
View on GitHub
BOF template with boflink and mutator kit support
☆49Jan 8, 2026Updated last month
dmcxblue / WSL-Payloads
View on GitHub
A small How-To on creating your own weaponized WSL file
☆121Jul 23, 2025Updated 7 months ago
NEED-Programming / Golden-Ticket
View on GitHub
Creating them Golden Tickets
☆14Aug 16, 2025Updated 6 months ago
rtecCyberSec / BitlockMove
View on GitHub
Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
☆436Jun 27, 2025Updated 8 months ago
garrettfoster13 / fustercluck
View on GitHub
POC tool to abuse windows server failover clusters
☆55Aug 7, 2025Updated 6 months ago
ineesdv / Tangled
View on GitHub
Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.
☆232Dec 18, 2025Updated 2 months ago
s0lst1c3 / awae
View on GitHub
☆16Jul 5, 2017Updated 8 years ago
DotNetRussell / BloodBash
View on GitHub
A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for…
☆175Updated this week
Karkas66 / EarlyCascadeImprooved
View on GitHub
an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code
☆22Feb 20, 2025Updated last year
Maldev-Academy / GhostlyHollowingViaTamperedSyscalls2
View on GitHub
Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection
☆70Dec 26, 2025Updated 2 months ago
grayhatkiller / wambam-bof
View on GitHub
☆47Dec 5, 2025Updated 2 months ago
RedByte1337 / GraphSpy
View on GitHub
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
☆1,032Dec 31, 2025Updated 2 months ago
vysecurity / msmailprobe2
View on GitHub
Office 365 and Exchange Enumeration Version 2
☆18Jan 30, 2024Updated 2 years ago
monsieurPale / BreakFAST
View on GitHub
Proof of concept for Kerberos Armoring abuse.
☆80Dec 12, 2025Updated 2 months ago
CrowdStrike / sccmhound
View on GitHub
A BloodHound collector for Microsoft Configuration Manager
☆391Jul 7, 2025Updated 7 months ago
CCob / DRSAT
View on GitHub
Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
☆275Dec 27, 2024Updated last year
Mayyhem / Maestro
View on GitHub
Abusing Azure services over C2
☆368Jan 20, 2026Updated last month
antroguy / GetAccessTokenWithSSOCookie
View on GitHub
☆50Jun 4, 2025Updated 8 months ago
chryzsh / awesome-bof
View on GitHub
🧠 The ultimate resource for finding Beacon Object Files (BOFs).
☆106Updated this week
peass-ng / CloudPEASS
View on GitHub
☆620Feb 5, 2026Updated 3 weeks ago
0xsh3llf1r3 / ColdWer
View on GitHub
Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass
☆115Jan 29, 2026Updated last month
logangoins / Cable
View on GitHub
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
☆400Jul 23, 2025Updated 7 months ago
RootUp / git-fsmonitor
View on GitHub
This is a proof-of-work for abusing "fsmonitor" against IDE.
☆42Nov 22, 2025Updated 3 months ago
Mr-Un1k0d3r / MsGraphFunzy
View on GitHub
Scripts to interact with Microsoft Graph APIs
☆44Nov 7, 2024Updated last year
ZephrFish / LOLSearches
View on GitHub
Living off the land searches for explorer and sharepoint
☆93Dec 7, 2025Updated 2 months ago
praetorian-inc / google-redirector
View on GitHub
A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.
☆133Nov 12, 2025Updated 3 months ago
praetorian-inc / swarmer
View on GitHub
A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MAN
☆104Jan 26, 2026Updated last month
Kudaes / Eclipse
View on GitHub
Activation Context Hijack
☆169Aug 3, 2025Updated 6 months ago
slemire / WSPCoerce
View on GitHub
PoC to coerce authentication from Windows hosts using MS-WSP
☆302Sep 7, 2023Updated 2 years ago
dmcxblue / AzureStrike
View on GitHub
An HTA Application which builds Azure (Entra) Scenarios for Red Team Simulations
☆61Aug 18, 2025Updated 6 months ago
MaorSabag / impacket-jump
View on GitHub
Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…
☆119Dec 7, 2025Updated 2 months ago