onsecurity / evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
☆13Updated 11 months ago
Alternatives and similar repositories for evilginx2:
Users that are interested in evilginx2 are comparing it to the libraries listed below
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- Take a list of URIs and print all the of the paths☆10Updated 4 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- ☆16Updated 5 years ago
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated last year
- Kubernetes Scanner☆40Updated 3 years ago
- Random code snippets☆9Updated last year
- LetMeOutOfYour.net Resources☆20Updated 4 years ago
- Subdomain Enumeration and Scanner☆33Updated 4 years ago
- ☆15Updated 3 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- S3 bucket enumerator☆29Updated 5 years ago
- Cobalt Strike/C2 Servers☆13Updated 3 years ago
- ☆34Updated last month
- Updated 4 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- ☆26Updated 2 years ago
- Scripts for OSCE☆18Updated 6 years ago
- CVE-2020-5902☆9Updated 4 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆43Updated 2 years ago
- Google Chrome Extension automates testing fundamental Web Problems via Chrome☆21Updated 3 years ago
- rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication…☆43Updated 3 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan …☆50Updated 4 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- Basic tool to automate backdooring PE files☆54Updated 3 years ago
- Simple Live Data Collection Tool☆21Updated 4 years ago