byt3bl33d3r / UhOh365Links
A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is unthrottled, and is incredibly useful for social engineering assessments to find which emails exist and which don't.
☆31Updated 4 years ago
Alternatives and similar repositories for UhOh365
Users that are interested in UhOh365 are comparing it to the libraries listed below
Sorting:
- Exchange your privileges for Domain Admin privs by abusing Exchange☆17Updated 5 years ago
- Active Directory information dumper via LDAP☆13Updated 5 years ago
- A collection of data exfiltration scripts for Red Team assessments.☆99Updated 5 years ago
- SMBMap is a handy SMB enumeration tool☆38Updated last year
- PowerSploit - A PowerShell Post-Exploitation Framework☆18Updated 5 years ago
- My Python Cookiecutter project template☆32Updated 3 years ago
- Red Team Tool Kit☆16Updated 6 years ago
- Custom pentesting tools☆25Updated 4 years ago
- Some useful scripts for CobaltStrike☆11Updated 6 years ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆75Updated 10 months ago
- The Diagon Attack Framework is a Prismatica application containing the Ravenclaw, Gryffindor, and Slytherin remote access tools (RATs).☆53Updated 2 years ago
- Wireless Pentesting Device☆24Updated 5 years ago
- Empire is a PowerShell and Python 3.x post-exploitation framework.☆18Updated 5 years ago
- Red Team tool for exfiltrating the target organization's Google People Directory that you have access to, via Google's API.☆59Updated 4 years ago
- Sp00fer blog post -☆25Updated 3 years ago
- PowerShell payload generator☆117Updated 4 years ago
- Automatically spin up infra for phishing☆64Updated 5 years ago
- autocrack adds queue support for hashcat cracking.☆41Updated 2 years ago
- credshed - a scalable database for credential leaks. Written in Python, it can easily ingest poorly-formatted files or entire directorie…☆62Updated 4 years ago
- A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow☆103Updated 4 years ago
- Various scripts and codes☆85Updated 4 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- ☆53Updated 6 years ago
- Basic tool to automate backdooring PE files☆56Updated 3 years ago
- AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities☆73Updated 4 years ago
- Kali configuration optimized for red teaming/pentesting/CTFs☆20Updated last year
- Script to provision a curated set of pentesting tools into a Kali (supported) box.☆13Updated 4 years ago
- Analyze ARP requests to identify hosts that are communicating with one another.☆19Updated 6 years ago
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆13Updated 3 years ago
- Decode Hashcat '$HEX[]' password output from a password list containing a mixture of non-encoded and encoded passwords☆24Updated 6 years ago