gh0st359 / xserumLinks
XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more — with advanced obfuscation techniques and customizable output formats.
☆20Updated 7 months ago
Alternatives and similar repositories for xserum
Users that are interested in xserum are comparing it to the libraries listed below
Sorting:
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter☆109Updated last year
- 🎒 An up-to-date collection of precompiled binaries and hacking scripts.☆46Updated 3 weeks ago
- Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve cli…☆82Updated last year
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆119Updated 10 months ago
- A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit☆114Updated last year
- Vast.ai Password Kracking☆89Updated last month
- Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishing☆52Updated 8 months ago
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆129Updated 8 months ago
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdoma…☆87Updated 2 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated last year
- quick and dirty proof-of-concept to hide shells in images☆52Updated last year
- Decrypt Chromium based browser passwords with PowerShell.☆123Updated 2 weeks ago
- EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.☆89Updated last year
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆72Updated 2 weeks ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆79Updated last year
- A powershell module for hiding payloads in the pixels of images☆79Updated last year
- Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if y…☆99Updated 2 years ago
- The following code when compiled in go takes a domain name as an argument and outputs an HTML file with Google Search links for various d…☆16Updated last year
- Script to perform some hashcracking logic automagically☆81Updated 2 weeks ago
- Tracks a range of Microsoft owned ASNs and publishes a daily release containing a list of IPv4 and IPv6 address in CIDR notation.☆30Updated this week
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.☆124Updated last year
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆64Updated last year
- SprayShark is a modular G-Suite password sprayer with threading!☆54Updated 6 months ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆131Updated 10 months ago
- ☆79Updated last year
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated last year
- A small executable to trick a user to authenticate using code matching MFA☆69Updated 2 years ago
- Living Off The Land (LOTL) persistent Reverse shell☆103Updated last year
- IPSpinner works as a local proxy that redirects requests through external services.☆109Updated 8 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆53Updated 8 months ago