Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.
☆368Jun 18, 2024Updated 2 years ago
Alternatives and similar repositories for evilqr
Users that are interested in evilqr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Send phishing messages and attachments to Microsoft Teams users☆1,117Jun 19, 2024Updated 2 years ago
- An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…☆106Jul 27, 2023Updated 2 years ago
- REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…☆163Feb 22, 2024Updated 2 years ago
- evilginx3 + gophish☆2,003Jun 15, 2024Updated 2 years ago
- Collection of random RedTeam scripts.☆213Mar 8, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Slides and videos from talks given at cons☆29Updated this week
- UAC Bypass By Abusing Kerberos Tickets☆515Aug 10, 2023Updated 2 years ago
- A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…☆397Aug 2, 2023Updated 2 years ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆633Jun 25, 2024Updated 2 years ago
- CROSS PLATFORM REMOTE ACCESS TROJAN (RAT)☆114Sep 17, 2025Updated 9 months ago
- Reverse-HTTP Redirector via DigitalOcean Apps Platform☆33Aug 16, 2023Updated 2 years ago
- ☆91Aug 5, 2023Updated 2 years ago
- ☆291Jul 20, 2023Updated 2 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆15,220Jun 10, 2026Updated 2 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆648Apr 2, 2026Updated 2 months ago
- It was developed to speed up the processes of SOC Analysts during analysis☆47Mar 31, 2026Updated 2 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆191Mar 14, 2025Updated last year
- Ready to go Phishing Platform☆1,149May 6, 2025Updated last year
- ☆76Feb 4, 2024Updated 2 years ago
- Bypassing UAC with SSPI Datagram Contexts☆469Sep 24, 2023Updated 2 years ago
- This function combines all the above functions and takes necessary information from the user to change the IP and MAC address, start the …☆73May 21, 2023Updated 3 years ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,199Oct 16, 2023Updated 2 years ago
- sturdy-chainsaw☆70Aug 10, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Escalate Service Account To LocalSystem via Kerberos☆404Sep 14, 2023Updated 2 years ago
- A C# port from Invoke-GhostTask☆120Jan 5, 2024Updated 2 years ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆605Jan 20, 2026Updated 5 months ago
- Shellcode encryptor & obfuscator tool☆1,027May 23, 2026Updated last month
- Updated version of a long known self deletion technique to work with 24H2.☆62Jun 9, 2025Updated last year
- Python 3 script to dump/scrape/extract company employees from LinkedIn API☆600Apr 18, 2026Updated 2 months ago
- ☆308Mar 15, 2025Updated last year
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…☆375Apr 6, 2024Updated 2 years ago
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆39Nov 16, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer☆745May 19, 2023Updated 3 years ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆305Sep 7, 2023Updated 2 years ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆577Jun 3, 2025Updated last year
- Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…☆275Jan 18, 2023Updated 3 years ago
- Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.☆2,263Feb 25, 2023Updated 3 years ago
- ☆224Mar 10, 2024Updated 2 years ago
- FindUncommonShares is a Python script allowing to quickly find uncommon shares in vast Windows Domains, and filter by READ or WRITE acces…☆431Nov 12, 2025Updated 7 months ago