JumpsecLabs / TokenFlareLinks
Serverless AITM Simulation Framework for Entra ID and M365
☆207Updated last month
Alternatives and similar repositories for TokenFlare
Users that are interested in TokenFlare are comparing it to the libraries listed below
Sorting:
- A community-driven collection of BloodHound queries☆159Updated last week
- Azure Post Exploitation Framework☆244Updated 3 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆165Updated last year
- ☆120Updated 8 months ago
- Advanced Domain Controller attack and credential analysis tool leveraging DonPAPI database☆260Updated 3 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated last year
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆106Updated 10 months ago
- CaptainCredz is a modular and discreet password-spraying tool.☆133Updated 6 months ago
- Living off the land searches for explorer and sharepoint☆92Updated 2 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181Updated 8 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆166Updated 6 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆149Updated last month
- Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.☆220Updated last month
- 🌩️ Collection of BloodHound queries for Azure☆82Updated last year
- The Azure Execution Tool☆37Updated last week
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆183Updated last year
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆276Updated 3 weeks ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆121Updated last year
- Vast.ai Password Kracking☆92Updated 3 months ago
- Python alternative to Mimikatz lsadump::dcshadow☆157Updated 7 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆260Updated last month
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆206Updated last year
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆67Updated last year
- ☆188Updated last month
- With zero dependencies, NetCredz extracts credentials from pcap files or live traffic, supporting NTLM, LDAP, HTTP, SMTP, SNMP, Telnet, F…☆76Updated last year
- This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim …☆184Updated 4 months ago
- Proof of concept: using a Cloudflare worker for AITM attacks☆141Updated last year
- Group Policy Objects manipulation and exploitation framework☆288Updated 2 months ago
- Parses Snaffler output file and generate beautified outputs.☆132Updated last month
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆119Updated 6 months ago