gh0st359 / xserum
XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more — with advanced obfuscation techniques and customizable output formats.
☆11Updated last week
Alternatives and similar repositories for xserum:
Users that are interested in xserum are comparing it to the libraries listed below
- Lifetime AMSI bypass.☆34Updated this week
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆73Updated last month
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆18Updated 2 months ago
- A repo of scripts I find helpful for daily tasks.☆28Updated 11 months ago
- ☆32Updated this week
- ☆58Updated 6 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆75Updated 5 months ago
- Parses Snaffler output file and generate beautified outputs.☆93Updated 3 months ago
- Automates the network enumeration process in a fire-and-forget manner, among many more functions. Aims to be the illest Nmap/masscan wrap…☆53Updated 3 weeks ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆82Updated last month
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆109Updated 3 months ago
- Source code and examples for PassiveAggression☆54Updated 10 months ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆41Updated last year
- Simple netexec wraper with html repport☆18Updated 11 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated 6 months ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆100Updated 5 months ago
- msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…☆40Updated last month
- Various AD tools needed for penetration testing in one place.☆24Updated last year
- 🌩️ Collection of BloodHound queries for Azure☆63Updated 3 months ago
- Automatically create an operation log of your shell! Supports Linux (Bash/Zsh) and Windows (PowerShell/CMD).☆32Updated last month
- This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)☆44Updated last month
- Brief writeup of post exploitation methodologies.☆18Updated last year
- Living off the land searches for explorer and sharepoint☆79Updated this week
- ☆23Updated 2 months ago
- Enumerate the Domain for Readable and Writable Shares☆17Updated 2 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆25Updated 3 months ago
- A python script that automates a C2 Profile build☆40Updated last month
- Addon for BHCE☆42Updated 3 weeks ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆34Updated 5 months ago
- ☆43Updated 2 weeks ago