bigb0sss / Microsoft365_devicePhish
Phishing Abusing Microsoft 365 OAuth Authorization Flow
☆17Updated 2 years ago
Related projects: ⓘ
- ☆46Updated 2 years ago
- Google Meet Phishing Template For Gophish☆45Updated 2 years ago
- ☆12Updated 4 months ago
- AMSI Bypass for powershell☆29Updated 2 years ago
- Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.☆32Updated 2 years ago
- Super organized and flexible script for sending phishing campaigns☆54Updated 2 years ago
- User enumeration and password spraying tool for testing Azure AD☆67Updated 2 years ago
- Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)☆31Updated 2 years ago
- A little cheatsheet for NetExec☆12Updated 4 months ago
- ☆12Updated last year
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆16Updated 2 years ago
- A C2 framework built for my bachelors thesis☆51Updated 2 months ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated 11 months ago
- A basic username enumeration and password spraying tool aimed at spraying Microsoft's DOM based authentication using selenium.☆32Updated 9 months ago
- TheSprayer is a cross-platform tool designed to help penetration testers spray passwords against an Active Directory domain without locki…☆28Updated 2 years ago
- ☆23Updated last year
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆55Updated 2 years ago
- Simple python script to evade antiviruses on fully patched and updated Windows environments using a py2exe.☆17Updated last year
- Python script for extracting and decrypting Group Policy Preferences passwords☆19Updated 3 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 2 years ago
- Classic Web shell upload techniques☆18Updated 2 months ago
- ☆14Updated 2 years ago
- Discord C2 Profile for Mythic☆23Updated 5 months ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆41Updated last year
- A framework for OAuth 2.0 device code authentication grant flow phishing☆33Updated last year
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆27Updated 2 years ago
- A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.☆16Updated 2 years ago
- An offensive security framework for writing payloads☆13Updated 2 years ago
- ☆30Updated this week
- Small project to facilitate creation of .lnk payloads☆60Updated last year