gh0st359 / xserumLinks
XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more — with advanced obfuscation techniques and customizable output formats.
☆20Updated 8 months ago
Alternatives and similar repositories for xserum
Users that are interested in xserum are comparing it to the libraries listed below
Sorting:
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter☆110Updated last year
- 🎒 An up-to-date collection of precompiled binaries and hacking scripts.☆47Updated last week
- Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve cli…☆82Updated last year
- Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishing☆52Updated 9 months ago
- quick and dirty proof-of-concept to hide shells in images☆51Updated last year
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆69Updated 3 weeks ago
- Vast.ai Password Kracking☆92Updated 2 months ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆120Updated 11 months ago
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆72Updated last month
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆51Updated last year
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdoma…☆87Updated 3 months ago
- A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit☆116Updated last year
- Decrypt Chromium based browser passwords with PowerShell.☆129Updated last month
- ☆55Updated last month
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆132Updated 9 months ago
- EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.☆89Updated last year
- IPSpinner works as a local proxy that redirects requests through external services.☆112Updated 9 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆106Updated 4 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆67Updated last year
- ☆62Updated 2 weeks ago
- SprayShark is a modular G-Suite password sprayer with threading!☆56Updated 7 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆207Updated 3 months ago
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆79Updated last year
- SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…☆82Updated last week
- A powershell module for hiding payloads in the pixels of images☆77Updated last year
- This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)☆66Updated 9 months ago
- ☆20Updated 9 months ago
- A script to automate keystrokes through a graphical desktop program.☆34Updated 6 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆165Updated 5 months ago