dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-factor authentication attacks. Additionally, the framework offers authentication attacks and enumeration functionality for O365 and MFA portals.
☆43Apr 23, 2024Updated 2 years ago
Alternatives and similar repositories for dauthi
Users that are interested in dauthi are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Collection of small JavaScript functions and scripts that can be used in the browser to interact with Lair☆22Mar 20, 2019Updated 7 years ago
- ☆16May 29, 2024Updated last year
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆23Sep 15, 2023Updated 2 years ago
- Threadless Injection Payload Toolkit☆12Oct 12, 2023Updated 2 years ago
- HTML smuggling is not an evil, it can be useful☆14Jan 28, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Use WordPress pingback.ping to transfer files.☆16Feb 25, 2024Updated 2 years ago
- Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption☆19Aug 5, 2022Updated 3 years ago
- Dont Gamble with Risk☆14Mar 4, 2024Updated 2 years ago
- BloodHound Automation: Collection, Analysis and Data Import☆21Nov 12, 2025Updated 5 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Aug 30, 2024Updated last year
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆32Mar 8, 2025Updated last year
- Go client for Elasticsearch OSINT platform☆15Nov 4, 2023Updated 2 years ago
- Small toolkit for extracting information and dumping sensitive strings from Windows processes☆116Jul 17, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A tunneling toolkit enabling operators to move data from one place to another evasively.☆78Nov 3, 2025Updated 5 months ago
- Gmail Enumeration using a glitch described here https://blog.0day.rocks/abusing-gmail-to-get-previously-unlisted-e-mail-addresses-41544b6…☆28Aug 4, 2022Updated 3 years ago
- ☆217Dec 17, 2025Updated 4 months ago
- Gophish companion script for sms phishing.☆19Dec 10, 2019Updated 6 years ago
- Exploits Unauth Docker API☆44Apr 18, 2025Updated last year
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdoma…☆88Sep 2, 2025Updated 8 months ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- self-hosted Azure OSINT tool☆35Jun 24, 2025Updated 10 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Piper Burp Suite Extender plugin☆16Jan 15, 2026Updated 3 months ago
- Process dumper wrote in rust.☆14Sep 16, 2024Updated last year
- Brute Ratel External C2 (Microsoft Teams)☆38Dec 11, 2024Updated last year
- CVE-2024-8190: Ivanti Cloud Service Appliance Command Injection☆17Sep 16, 2024Updated last year
- Identify binaries with Authenticode digital signatures signed to an internal CA/domain☆40Feb 6, 2024Updated 2 years ago
- ☆290Aug 14, 2025Updated 8 months ago
- ☆221Mar 26, 2024Updated 2 years ago
- Exploit for CVE-2024-5009☆13Jul 8, 2024Updated last year
- Abusing Azure services over C2☆370Jan 20, 2026Updated 3 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authenticatio…☆47Jul 19, 2022Updated 3 years ago
- A MBR Fuzzer☆31Apr 3, 2024Updated 2 years ago
- One line command and control backdoors for APIs and web applications.☆51Apr 9, 2024Updated 2 years ago
- One proxy to rule them all☆126Jul 28, 2024Updated last year
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆339Aug 7, 2024Updated last year
- An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.☆19Sep 13, 2025Updated 7 months ago