OAuth Device Code Phishing Toolkit
☆112Feb 6, 2026Updated 3 weeks ago
Alternatives and similar repositories for squarephish2
Users that are interested in squarephish2 are comparing it to the libraries listed below
Sorting:
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated last year
- Terms of Use Conditional Access M365 Evilginx Phishlet☆44Jun 23, 2025Updated 8 months ago
- AzDevRecon is a powerful web-based enumeration tool for offensive security professionals, red teamers, and pentesters targeting Azure Dev…☆25Oct 13, 2025Updated 4 months ago
- Vectored Exception Handling Squared☆29Dec 27, 2025Updated 2 months ago
- This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim …☆188Sep 19, 2025Updated 5 months ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- TokenCert☆102Nov 15, 2024Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆197Nov 4, 2025Updated 4 months ago
- Find world writable directories that contain a .exe or .dll file☆13Aug 31, 2021Updated 4 years ago
- ☆50Jun 4, 2025Updated 9 months ago
- Azure Post Exploitation Framework☆244Oct 27, 2025Updated 4 months ago
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆190Feb 16, 2026Updated 2 weeks ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆165Dec 7, 2024Updated last year
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆167Nov 17, 2025Updated 3 months ago
- ☆160May 5, 2025Updated 10 months ago
- Python script to leverage MSFT_MTProcess WMI class☆39Sep 17, 2025Updated 5 months ago
- ☆121Nov 21, 2024Updated last year
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆50Jul 6, 2025Updated 7 months ago
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated 11 months ago
- Blog/Journal on how to backdoor VSCode extensions☆76Feb 24, 2026Updated last week
- Shellcode loader that executes embedded Lua from Rust.☆128Dec 16, 2024Updated last year
- A small How-To on creating your own weaponized WSL file☆122Jul 23, 2025Updated 7 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆56Dec 4, 2025Updated 3 months ago
- Scripts to enumerate and report on Entra Conditional Access☆41Sep 5, 2025Updated 6 months ago
- 🌐 [ New Chrome Cookies ] AVM-Tools - Advanced FUD Stealer. Features: Credential Extraction (Passwords, Cookies, Autofill), Discord Sessi…☆27Updated this week
- PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab☆93Jul 22, 2025Updated 7 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 10 months ago
- Utilizng an MCP Server to communicate with your C2☆86May 15, 2025Updated 9 months ago
- ☆26Dec 21, 2025Updated 2 months ago
- A simple Linux in-memory .so loader☆33Mar 29, 2023Updated 2 years ago
- ☆75Jan 1, 2026Updated 2 months ago
- ☆216Mar 26, 2024Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆79Dec 23, 2023Updated 2 years ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆18Jun 26, 2025Updated 8 months ago
- PoC XLL builder in Python/Nim☆49Nov 21, 2022Updated 3 years ago
- Offensive toolkit and BloodHound graph creator for DPAPI blobs and master key files☆14Jan 10, 2026Updated last month
- time-based user enum via Basic Auth in Azure against Autodiscover☆34Oct 3, 2024Updated last year
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆31Feb 7, 2025Updated last year