onsecurity / evilginx2Links
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
☆13Updated last year
Alternatives and similar repositories for evilginx2
Users that are interested in evilginx2 are comparing it to the libraries listed below
Sorting:
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Take a list of URIs and print all the of the paths☆10Updated 5 years ago
- Subdomain Enumeration and Scanner☆34Updated 5 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- ☆33Updated 9 months ago
- Data exfiltration utility for testing detection capabilities☆57Updated 3 years ago
- LetMeOutOfYour.net Resources☆20Updated 5 years ago
- Chalumeau is automated,extendable and customizable credential dumping tool based on powershell and python.☆102Updated 5 years ago
- ☆15Updated 4 years ago
- automatic scan for hackthebox☆13Updated 5 years ago
- Red Team tool for exfiltrating the target organization's Google People Directory that you have access to, via Google's API.☆59Updated 4 years ago
- This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…☆33Updated 5 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- Any presentation we've given at FortyNorth Security☆34Updated 4 years ago
- Scripts for OSCE☆18Updated 6 years ago
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated 2 years ago
- Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.☆58Updated 5 years ago
- Unique wordlist generator of unique wordlists.☆42Updated 2 years ago
- Unofficial API & Client for dnsdumpster.com and hackertarget.com☆67Updated 6 years ago
- S3 bucket enumerator☆30Updated 6 years ago
- autocrack adds queue support for hashcat cracking.☆41Updated 2 years ago
- Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…☆46Updated 3 years ago
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆20Updated 3 years ago
- rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication…☆44Updated 4 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Updated 3 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 4 years ago
- ☆47Updated 4 years ago
- Active Directory information dumper via LDAP☆13Updated 5 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago