byt3bl33d3r / UhOh365
A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is unthrottled, and is incredibly useful for social engineering assessments to find which emails exist and which don't.
☆28Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for UhOh365
- Exchange your privileges for Domain Admin privs by abusing Exchange☆16Updated 4 years ago
- SMBMap is a handy SMB enumeration tool☆36Updated 5 months ago
- Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…☆12Updated 4 years ago
- A collection of data exfiltration scripts for Red Team assessments.☆96Updated 4 years ago
- AV/EDR evasion via direct system calls.☆32Updated 3 years ago
- Active Directory information dumper via LDAP☆12Updated 4 years ago
- Custom pentesting tools☆24Updated 4 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆18Updated 4 years ago
- Modern problems require modern solutions☆31Updated 2 years ago
- The Diagon Attack Framework is a Prismatica application containing the Ravenclaw, Gryffindor, and Slytherin remote access tools (RATs).☆50Updated last year
- A simple "ransomware" using powershell☆13Updated 3 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆72Updated this week
- A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow☆92Updated 3 years ago
- Wireless Pentesting Device☆20Updated 4 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆16Updated 2 years ago
- Post-exploitation NTLM password hash extractor☆18Updated 3 years ago
- Fully-featured spear-phishing toolkit - web front-end☆49Updated 11 months ago
- Reconnaissance tool for Microsoft Office 365☆66Updated 6 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆41Updated 3 years ago
- Veil 3.1.X (Check version info in Veil at runtime)☆14Updated 5 years ago
- Malicious Macro attack techniques for red teamers☆15Updated 3 years ago
- Sp00fer blog post -☆25Updated 2 years ago
- Kali configuration optimized for red teaming/pentesting/CTFs☆20Updated last year
- Some useful scripts for CobaltStrike☆10Updated 5 years ago
- Analyze ARP requests to identify hosts that are communicating with one another.☆17Updated 5 years ago
- Stealing MFA/2FA tokens and using them to logon with VPN clients☆17Updated 6 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆18Updated 4 years ago
- Empire is a PowerShell and Python 3.x post-exploitation framework.☆16Updated 4 years ago