Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.
☆363Jun 18, 2024Updated last year
Alternatives and similar repositories for evilqr
Users that are interested in evilqr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Send phishing messages and attachments to Microsoft Teams users☆1,116Jun 19, 2024Updated last year
- An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…☆106Jul 27, 2023Updated 2 years ago
- REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…☆163Feb 22, 2024Updated 2 years ago
- evilginx3 + gophish☆1,995Jun 15, 2024Updated last year
- Collection of random RedTeam scripts.☆213Mar 8, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Slides and videos from talks given at cons☆26Jun 19, 2025Updated 11 months ago
- UAC Bypass By Abusing Kerberos Tickets☆509Aug 10, 2023Updated 2 years ago
- A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…☆398Aug 2, 2023Updated 2 years ago
- Short script to decode output logs of *sslsplit* raw HTTP packets.☆17Aug 12, 2016Updated 9 years ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆632Jun 25, 2024Updated last year
- CROSS PLATFORM REMOTE ACCESS TROJAN (RAT)☆114Sep 17, 2025Updated 8 months ago
- Reverse-HTTP Redirector via DigitalOcean Apps Platform☆33Aug 16, 2023Updated 2 years ago
- ☆91Aug 5, 2023Updated 2 years ago
- ☆291Jul 20, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆15,136Oct 6, 2025Updated 8 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆643Apr 2, 2026Updated 2 months ago
- It was developed to speed up the processes of SOC Analysts during analysis☆46Mar 31, 2026Updated 2 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆190Mar 14, 2025Updated last year
- Ready to go Phishing Platform☆1,143May 6, 2025Updated last year
- ☆76Feb 4, 2024Updated 2 years ago
- Bypassing UAC with SSPI Datagram Contexts☆467Sep 24, 2023Updated 2 years ago
- This function combines all the above functions and takes necessary information from the user to change the IP and MAC address, start the …☆73May 21, 2023Updated 3 years ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,198Oct 16, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- sturdy-chainsaw☆71Aug 10, 2023Updated 2 years ago
- Escalate Service Account To LocalSystem via Kerberos☆403Sep 14, 2023Updated 2 years ago
- A C# port from Invoke-GhostTask☆121Jan 5, 2024Updated 2 years ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆604Jan 20, 2026Updated 4 months ago
- Shellcode encryptor & obfuscator tool☆1,026May 23, 2026Updated 2 weeks ago
- Updated version of a long known self deletion technique to work with 24H2.☆62Jun 9, 2025Updated 11 months ago
- Python 3 script to dump/scrape/extract company employees from LinkedIn API☆595Apr 18, 2026Updated last month
- ☆308Mar 15, 2025Updated last year
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…☆375Apr 6, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆39Nov 16, 2023Updated 2 years ago
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer☆745May 19, 2023Updated 3 years ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆306Sep 7, 2023Updated 2 years ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆572Jun 3, 2025Updated last year
- Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…☆275Jan 18, 2023Updated 3 years ago
- Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.☆2,258Feb 25, 2023Updated 3 years ago
- ☆224Mar 10, 2024Updated 2 years ago