TheCyb3rAlpha / BobTheSmugglerLinks
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
☆570Updated last month
Alternatives and similar repositories for BobTheSmuggler
Users that are interested in BobTheSmuggler are comparing it to the libraries listed below
Sorting:
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆429Updated 2 months ago
- ☆306Updated last year
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆386Updated 2 months ago
- ☆571Updated last year
- Compiled tools for internal assessments☆363Updated this week
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆575Updated 7 months ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆808Updated 8 months ago
- A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented b…☆433Updated last year
- A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.☆779Updated 11 months ago
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆1,235Updated 3 weeks ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆479Updated 6 months ago
- A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them bi…☆492Updated last month
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆457Updated 3 months ago
- An offensive data enrichment pipeline☆875Updated this week
- This is for Ethical Use only. The default automated binaries created are all burned. I have added the script to the repo to modify certai…☆442Updated 6 months ago
- Lab used for workshop and CTF☆382Updated last week
- Redeye is a tool intended to help you manage your data during a pentest operation☆470Updated last year
- C2 infrastructure over Microsoft Teams.☆728Updated 10 months ago
- Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.☆341Updated last year
- Open-Source Phishing Toolkit☆255Updated 4 months ago
- A RedTeam Toolkit☆408Updated 3 months ago
- This repository contains detailed adversary simulation APT campaigns targeting various critical sectors. Each simulation includes custom …☆772Updated 2 weeks ago
- A visual methodology tracking platform tailored for offensive security assessments☆229Updated 2 months ago
- Embed a payload inside a PNG file☆360Updated last year
- ☆391Updated 9 months ago
- Wordlist to crack .zip-file password☆207Updated 3 years ago
- Active Directory Auditing and Enumeration☆503Updated last week
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆656Updated last month
- A python tool to automate KeePass discovery and secret extraction.☆508Updated 11 months ago
- Google Calendar RAT is a PoC of Command&Control over Google Calendar Events☆260Updated 3 months ago