onsecurity / evilginx2Links
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
☆13Updated last year
Alternatives and similar repositories for evilginx2
Users that are interested in evilginx2 are comparing it to the libraries listed below
Sorting:
- Kubernetes Scanner☆40Updated 3 years ago
- automatic scan for hackthebox☆13Updated 5 years ago
- Subdomain Enumeration and Scanner☆34Updated 5 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Take a list of URIs and print all the of the paths☆10Updated 5 years ago
- ☆15Updated 4 years ago
- Chalumeau is automated,extendable and customizable credential dumping tool based on powershell and python.☆103Updated 5 years ago
- Scripts for OSCE☆18Updated 6 years ago
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated 2 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 5 years ago
- Data exfiltration utility for testing detection capabilities☆57Updated 3 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- S3 bucket enumerator☆30Updated 6 years ago
- Any presentation we've given at FortyNorth Security☆34Updated 4 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 5 years ago
- Unofficial API & Client for dnsdumpster.com and hackertarget.com☆67Updated 6 years ago
- Red Team tool for exfiltrating the target organization's Google People Directory that you have access to, via Google's API.☆59Updated 4 years ago
- Unique wordlist generator of unique wordlists.☆42Updated 2 years ago
- This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…☆33Updated 5 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Updated 3 years ago
- LetMeOutOfYour.net Resources☆20Updated 5 years ago
- Perform operations on URLs like extracting paths, parameter names and/or values, domain name, host name (without HTTP[s]).☆29Updated 5 years ago
- Exploit PoC for CVE's and non CVE's alike☆22Updated 5 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 4 years ago
- Basic tool to automate backdooring PE files☆56Updated 3 years ago
- Active Directory information dumper via LDAP☆13Updated 5 years ago
- s3eker is an extensible way to find open S3 buckets.☆17Updated 5 years ago
- ☆17Updated 5 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Updated 7 years ago