netskopeoss / phish_oauthLinks
POC code to explore phishing attacks using OAuth 2.0 authorization flows, such as the device authorization grant.
☆35Updated 4 years ago
Alternatives and similar repositories for phish_oauth
Users that are interested in phish_oauth are comparing it to the libraries listed below
Sorting:
- Azure AD RedTeam Full Enumeration Script used to query all aspects of your target Azure tenant.☆70Updated last year
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆92Updated last year
- ☆115Updated 4 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆41Updated 4 years ago
- ☆80Updated 5 years ago
- This script is a multi-threaded Okta password sprayer.☆72Updated last year
- ☆70Updated last year
- Resolves an IP address to the cloud provider it is hosted on☆96Updated this week
- ☆137Updated 2 years ago
- ☆69Updated 3 years ago
- ☆117Updated 4 years ago
- Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…☆82Updated 3 weeks ago
- A very simple lab to demo some Terraform, DSC, Inspec and Gitlab CI☆93Updated 2 years ago
- ☆48Updated 8 months ago
- GoldenSAML Attack Libraries and Framework☆73Updated last year
- Fly into Gophish with One Click (Infra Automation)☆49Updated 2 years ago
- Password Spraying Script detecting current and previous passwords of Active Directory User☆65Updated 3 years ago
- Material for the "Hands-On BloodHound" Workshop☆109Updated 4 years ago
- Dynamic Labs is an open source tool aimed at red teamers and pentesters for the quick deployment of flexible, transient and cloud-hosted …☆62Updated last year
- TA505+ Adversary Simulation☆65Updated 4 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆63Updated 4 years ago
- HTTP(s) Screenshots for Pen Testers Who Value Their Time☆86Updated 9 months ago
- Lookup for interesting stuff in SMB shares☆149Updated 2 years ago
- User enumeration with Microsoft Teams API☆173Updated 4 years ago
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆55Updated 4 years ago
- Microsoft Azure Exploitation Framework☆57Updated 4 years ago
- Modular Enumeration and Password Spraying Framework☆123Updated last year
- A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow☆103Updated 4 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated 3 weeks ago
- ☆36Updated last year