gh0st359 / xserumLinks
XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more — with advanced obfuscation techniques and customizable output formats.
☆20Updated 9 months ago
Alternatives and similar repositories for xserum
Users that are interested in xserum are comparing it to the libraries listed below
Sorting:
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter☆113Updated 2 years ago
- Vast.ai Password Kracking☆92Updated 3 months ago
- 🎒 An up-to-date collection of precompiled binaries and hacking scripts.☆47Updated 3 weeks ago
- Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishing☆53Updated 10 months ago
- quick and dirty proof-of-concept to hide shells in images☆51Updated last year
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆121Updated last year
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts☆126Updated last month
- A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit☆115Updated last year
- A script to automate keystrokes through a graphical desktop program.☆34Updated 7 months ago
- Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve cli…☆82Updated last year
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated last year
- ☆55Updated 2 months ago
- Lifetime AMSI bypass.☆36Updated 9 months ago
- Decrypt Chromium based browser passwords with PowerShell.☆131Updated 2 months ago
- A small executable to trick a user to authenticate using code matching MFA☆69Updated 2 years ago
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆130Updated 10 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆111Updated 5 months ago
- EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.☆92Updated 2 weeks ago
- SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…☆95Updated last month
- EvilMist is a collection of scripts and utilities designed to support cloud penetration testing & red teaming. The toolkit helps identify…☆85Updated last week
- Script to check Azure Front Door WAF for insecure RemoteAddr variable☆23Updated 6 months ago
- ☆20Updated 10 months ago
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆71Updated 2 months ago
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆51Updated last year
- Gain another host's network access permissions by establishing a stateful connection with a spoofed source IP☆84Updated 8 months ago
- Fast context enumeration for newly obtained Active Directory credentials.☆85Updated 5 months ago
- ☆76Updated last year
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated last year
- Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if y…☆99Updated 2 years ago
- Script to perform some hashcracking logic automagically☆80Updated 2 months ago