gh0st359 / xserumLinks
XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more β with advanced obfuscation techniques and customizable output formats.
β18Updated 3 months ago
Alternatives and similar repositories for xserum
Users that are interested in xserum are comparing it to the libraries listed below
Sorting:
- π An up-to-date collection of precompiled binaries and hacking scripts.β41Updated 2 weeks ago
- Script to perform some hashcracking logic automagicallyβ72Updated last year
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filterβ106Updated last year
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdomaβ¦β77Updated 2 months ago
- EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.β86Updated 9 months ago
- Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve cliβ¦β78Updated 10 months ago
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filtersβ86Updated 3 months ago
- quick and dirty proof-of-concept to hide shells in imagesβ50Updated last year
- C2 writen in Rust & Go powered by Tor network.β109Updated this week
- A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkitβ90Updated 11 months ago
- Vast.ai Password Krackingβ76Updated last month
- Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishingβ49Updated 4 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.β120Updated last year
- β77Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine withβ¦β77Updated 8 months ago
- A small executable to trick a user to authenticate using code matching MFAβ69Updated last year
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails cβ¦β167Updated 9 months ago
- Advanced phishing tool, browser-based data capture, and realistic login page emulation.β1Updated last month
- Living Off The Land (LOTL) persistent Reverse shellβ101Updated last year
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.β84Updated 4 months ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatinβ¦β113Updated 6 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), aβ¦β51Updated 4 months ago
- A powershell module for hiding payloads in the pixels of imagesβ61Updated last year
- Gain another host's network access permissions by establishing a stateful connection with a spoofed source IPβ80Updated 2 months ago
- Youtube as C2 channel - Control Windows systems uploading QR videos to Youtubeβ91Updated last year
- Slides and videos from talks given at consβ23Updated last month
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local filesβ125Updated last year
- A script to automate keystrokes through a graphical desktop program.β35Updated last month
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.β62Updated 11 months ago
- β59Updated 9 months ago