Alternatives and similar repositories for phishsticks

Users that are interested in phishsticks are comparing it to the libraries listed below

• audibleblink / davil

  View on GitHub
  leaking net-ntlm with webdav
  ☆26Feb 23, 2021Updated 4 years ago
• CultCornholio / solenya

  View on GitHub
  Microsoft365 Device Code Phishing Framework
  ☆39Sep 4, 2021Updated 4 years ago
• rbmm / SDD2

  View on GitHub
  Self delete DLL (2)
  ☆14Feb 15, 2024Updated 2 years ago
• hellofromdaniel / nyxppl

  View on GitHub
  Windows Protected Process Light toggle tool — dynamically finds offsets and patches EPROCESS using RTCore64
  ☆66May 2, 2025Updated 9 months ago
• tnkr / poc_monitor

  View on GitHub
  A short scraper looking for a POC of CVE-2024-49112
  ☆14Dec 16, 2024Updated last year
• milosilo / DLL-Proxy-Hijacking-Microsoft-Teams

  View on GitHub
  Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example
  ☆16Apr 7, 2021Updated 4 years ago
• dunderhay / git-rotate

  View on GitHub
  Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
  ☆148May 23, 2024Updated last year
• bot984397 / eepy

  View on GitHub
  ☆38Apr 15, 2025Updated 10 months ago
• LuemmelSec / APEX

  View on GitHub
  Azure Post Exploitation Framework
  ☆244Oct 27, 2025Updated 3 months ago
• SecurityRiskAdvisors / msspray

  View on GitHub
  Password attacks and MFA validation against various endpoints in Azure and Office 365
  ☆153Feb 10, 2023Updated 3 years ago
• puzzlepeaches / peas

  View on GitHub
  Modified version of PEAS client for offensive operations
  ☆16Mar 8, 2021Updated 4 years ago
• cmprmsd / cinelog

  View on GitHub
  Comprehensive logging of all terminal input and output for each session based on Asciinema and wild zsh + Python scripting.
  ☆41Jan 6, 2026Updated last month
• CompassSecurity / TokenPhisher

  View on GitHub
  ☆26Feb 11, 2025Updated last year
• blinkenl1ghts / donloader

  View on GitHub
  donLoader is a shellcode loader creation tool that uses donut to convert executable payloads into shellcode to evade detection on disk.
  ☆20Nov 24, 2021Updated 4 years ago
• SolomonSklash / netntlm

  View on GitHub
  A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
  ☆37Jul 27, 2021Updated 4 years ago
• KINGSABRI / ServerlessRedirector

  View on GitHub
  Serverless Redirector in various cloud vendor for red team
  ☆73Dec 8, 2022Updated 3 years ago
• TomOS3 / UserModeUnhooking

  View on GitHub
  This project is created for research into antivirus evasion by unhooking.
  ☆18Sep 2, 2021Updated 4 years ago
• trustedsec / CrackHound

  View on GitHub
  ☆143Oct 31, 2023Updated 2 years ago
• Retr0-code / hash-dumper

  View on GitHub
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆66Dec 29, 2023Updated 2 years ago
• freshness79 / unlock

  View on GitHub
  Microsoft Applocker evasion tool
  ☆39Nov 26, 2019Updated 6 years ago
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆164Oct 5, 2024Updated last year
• api0cradle / RedTeamScripts

  View on GitHub
  Just some random Red Team Scripts that can be useful
  ☆154Jun 28, 2024Updated last year
• BC-SECURITY / IronSharpPack

  View on GitHub
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆118May 2, 2024Updated last year
• ameenalkerdy / ETWShellcodeLoader

  View on GitHub
  Shellcode Loader Utilizing ETW Events
  ☆67Feb 26, 2025Updated 11 months ago
• Print3M / epic

  View on GitHub
  PIC shellcode (C/C++) development toolkit designed for malware developers.
  ☆119Dec 23, 2025Updated last month
• zeroSteiner / crimson-forge

  View on GitHub
  Sustainable shellcode evasion
  ☆112Dec 11, 2024Updated last year
• rtecCyberSec / RAITrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying
  ☆168Jul 22, 2025Updated 6 months ago
• GKNSB / HTMLSmuggler

  View on GitHub
  Smuggle a file to a user's browser
  ☆20Apr 16, 2022Updated 3 years ago
• rbmm / SDD

  View on GitHub
  Self Delete DLL
  ☆23Feb 15, 2024Updated 2 years ago
• JumpsecLabs / WALK_WebAssembly_Lure_Krafter

  View on GitHub
  A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …
  ☆99Sep 5, 2024Updated last year
• SecurityRiskAdvisors / letItGo

  View on GitHub
  Enumerate and check domains for Azure tenants
  ☆60Feb 1, 2022Updated 4 years ago
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆368Jan 20, 2026Updated 3 weeks ago
• pard0p / PICO-Implant

  View on GitHub
  PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…
  ☆43Nov 9, 2025Updated 3 months ago
• monoxgas / minibus

  View on GitHub
  Remote code execution in Power Platform connectors via JSON deserialization
  ☆23Mar 30, 2023Updated 2 years ago
• reznok / MemoryLoader

  View on GitHub
  A .NET binary loader that bypasses AMSI
  ☆45Sep 20, 2021Updated 4 years ago
• hvs-consulting / disable-netbios

  View on GitHub
  PowerShell script to disable NetBIOS on Windows
  ☆12Jul 19, 2021Updated 4 years ago
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆63Mar 19, 2024Updated last year
• S3cur3Th1sSh1t / Nim_CBT_Shellcode

  View on GitHub
  CallBack-Techniques for Shellcode execution ported to Nim
  ☆62Mar 19, 2021Updated 4 years ago
• puzzlepeaches / sneaky_proxy

  View on GitHub
  Hiding your infrastructure from the boys in blue.
  ☆23Oct 18, 2021Updated 4 years ago