TheCyb3rAlpha / BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
☆534Updated last month
Alternatives and similar repositories for BobTheSmuggler:
Users that are interested in BobTheSmuggler are comparing it to the libraries listed below
- ☆534Updated last year
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆415Updated last month
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆721Updated this week
- This is for Ethical Use only.☆327Updated 3 weeks ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆736Updated 3 weeks ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆738Updated last year
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆544Updated 5 months ago
- Script for generating revshells☆468Updated 7 months ago
- An offensive data enrichment pipeline☆671Updated last week
- A RedTeam Toolkit☆395Updated 3 weeks ago
- Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.☆292Updated 10 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆368Updated 2 months ago
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆375Updated 6 months ago
- ☆288Updated 10 months ago
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…☆363Updated last year
- ☆311Updated last year
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆510Updated 8 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆487Updated 5 months ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆630Updated 10 months ago
- A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented b…☆400Updated 10 months ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆391Updated 4 months ago
- Pen Test Report Generation and Assessment Collaboration☆516Updated last month
- Active Directory Auditing and Enumeration☆448Updated 2 weeks ago
- Real fucking shellcode encryptor & obfuscator tool☆829Updated last week
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆362Updated 2 weeks ago
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆640Updated last month
- ☆292Updated last month
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆449Updated last year
- A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them bi…☆343Updated last month
- Redeye is a tool intended to help you manage your data during a pentest operation☆465Updated 8 months ago