Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
☆748Dec 8, 2025Updated 3 months ago
Alternatives and similar repositories for Spoofy
Users that are interested in Spoofy are comparing it to the libraries listed below
Sorting:
- Inject remote template link into word document for remote template injection☆183Feb 13, 2021Updated 5 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆568Jun 5, 2023Updated 2 years ago
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,371Oct 22, 2025Updated 4 months ago
- A C# utility for interacting with SCCM☆682Aug 20, 2025Updated 6 months ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,259Mar 19, 2025Updated 11 months ago
- Chameleon: A tool for evading Proxy categorisation☆512Nov 28, 2024Updated last year
- Collection of remote authentication triggers in C#☆524May 15, 2024Updated last year
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆892Updated this week
- ☆1,531Aug 11, 2023Updated 2 years ago
- ☆199Oct 14, 2019Updated 6 years ago
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆783Oct 16, 2025Updated 4 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,100Jun 10, 2024Updated last year
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,535Feb 5, 2026Updated last month
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,745Feb 27, 2026Updated last week
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,556Oct 17, 2022Updated 3 years ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,158Updated this week
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆2,199Jan 5, 2026Updated 2 months ago
- ☆831Sep 9, 2022Updated 3 years ago
- A tool for checking if MFA is enabled on multiple Microsoft Services☆1,635Mar 4, 2025Updated last year
- Malicious WMI Events using PowerShell☆397Jul 25, 2016Updated 9 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆863Feb 3, 2024Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,633Aug 6, 2022Updated 3 years ago
- evilginx3 + gophish☆1,961Jun 15, 2024Updated last year
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,475Jan 23, 2026Updated last month
- A tool to help query AD via the LDAP protocol☆610Sep 25, 2024Updated last year
- Tool to remotely dump secrets from the Windows registry☆522Feb 27, 2026Updated last week
- ☆418Apr 28, 2021Updated 4 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆839Dec 2, 2023Updated 2 years ago
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆1,266Dec 9, 2025Updated 3 months ago
- Utility to craft HTML or SVG smuggled files for Red Team engagements☆246Mar 19, 2024Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,369Oct 27, 2023Updated 2 years ago
- Real fucking shellcode encryptor & obfuscator tool☆1,012Jan 7, 2026Updated 2 months ago
- Send phishing messages and attachments to Microsoft Teams users☆1,105Jun 19, 2024Updated last year
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆609Dec 9, 2025Updated 3 months ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,034Jul 12, 2025Updated 7 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆82Sep 13, 2024Updated last year
- TCP Port Redirection Utility☆762Jan 31, 2023Updated 3 years ago
- ↕️🤫 Stealth redirector for your red team operation security☆1,067Mar 1, 2026Updated last week
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆386Feb 23, 2024Updated 2 years ago