kgretzky / evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
☆12,415Updated last month
Alternatives and similar repositories for evilginx2:
Users that are interested in evilginx2 are comparing it to the libraries listed below
- In-depth attack surface mapping and asset discovery☆12,489Updated this week
- Fast web fuzzer written in Go☆13,446Updated 7 months ago
- Modlishka. Reverse Proxy.☆4,920Updated 10 months ago
- Fast passive subdomain enumeration tool.☆11,158Updated this week
- 🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻☆6,129Updated 8 months ago
- Open-Source Phishing Toolkit☆12,189Updated 4 months ago
- Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality…☆3,917Updated last month
- Directory/File, DNS and VHost busting tool written in Go☆10,937Updated this week
- Official Black Hat Arsenal Security Tools Repository☆3,988Updated 5 months ago
- Attack Surface Management Platform☆8,426Updated last month
- A Tool for Domain Flyovers☆5,714Updated 2 years ago
- E-mails, subdomains and names Harvester - OSINT☆12,062Updated this week
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,157Updated 2 months ago
- A Workflow Engine for Offensive Security☆5,469Updated 2 weeks ago
- Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email☆4,320Updated last year
- Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C☆8,583Updated 10 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,163Updated 3 months ago
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,500Updated 2 weeks ago
- The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.☆17,221Updated this week
- Monitor linux processes without root permissions☆5,111Updated 2 years ago
- Adversary Emulation Framework☆8,915Updated this week
- A swiss army knife for pentesting networks☆8,587Updated last year
- Web application fuzzer☆6,059Updated 6 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,030Updated 2 weeks ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,134Updated 4 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,301Updated 5 months ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,603Updated 2 months ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆11,246Updated 3 months ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,141Updated 8 months ago
- List of Awesome Red Teaming Resources☆7,078Updated last year