TheCyb3rAlpha / BobTheSmugglerLinks
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
☆552Updated 5 months ago
Alternatives and similar repositories for BobTheSmuggler
Users that are interested in BobTheSmuggler are comparing it to the libraries listed below
Sorting:
- A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented b…☆420Updated last year
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆427Updated 5 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆540Updated 3 months ago
- ☆301Updated last year
- ☆546Updated last year
- Compiled tools for internal assessments☆351Updated last week
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆444Updated 2 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆377Updated last week
- An offensive data enrichment pipeline☆829Updated last week
- This is for Ethical Use only.☆424Updated 3 months ago
- A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them bi…☆474Updated 5 months ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆798Updated 5 months ago
- C2 infrastructure over Microsoft Teams.☆708Updated 7 months ago
- Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.☆310Updated last year
- A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.☆753Updated 7 months ago
- Lab used for workshop and CTF☆268Updated 2 weeks ago
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆1,103Updated this week
- Script for generating revshells☆476Updated 11 months ago
- Send phishing messages and attachments to Microsoft Teams users☆1,087Updated last year
- This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.☆334Updated 2 months ago
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆416Updated 2 weeks ago
- A RedTeam Toolkit☆405Updated 2 weeks ago
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…☆372Updated last year
- Redeye is a tool intended to help you manage your data during a pentest operation☆467Updated last year
- A collection of red teaming and adversary emulation related tools, scripts, techniques, notes, etc☆314Updated last year
- A visual methodology tracking platform tailored for offensive security assessments☆198Updated this week
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆716Updated 2 weeks ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆651Updated last year
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆712Updated last month
- ScareCrow - Payload creation framework designed around EDR bypass.☆333Updated 2 years ago