secureworks / squarephish
☆291Updated last year
Alternatives and similar repositories for squarephish:
Users that are interested in squarephish are comparing it to the libraries listed below
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆380Updated 3 months ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆539Updated 4 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆476Updated 4 months ago
- Malicious shortcut generator for collecting NTLM hashes from insecure file shares.☆325Updated 5 months ago
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer☆707Updated last year
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆457Updated 2 years ago
- ☆295Updated 2 weeks ago
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆221Updated 8 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆380Updated last week
- Hiding GoPhish from the boys in blue☆179Updated 2 years ago
- A python script to dump files and folders remotely from a Windows SMB share.☆222Updated 2 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆409Updated 2 weeks ago
- Enhanced version of secretsdump.py from Impacket. Adds multi-threading and accepts an input file with a list of target hosts for simultan…☆215Updated last year
- Useful C2 techniques and cheatsheets learned from engagements☆484Updated this week
- Password spraying tool and Bloodhound integration☆229Updated 3 months ago
- Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…☆263Updated 2 years ago
- Amsi Bypass payload that works on Windwos 11☆375Updated last year
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆567Updated 9 months ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆369Updated 5 months ago
- ✉️ HTML Smuggling generator&obfuscator for your Red Team operations☆163Updated last year
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆166Updated 9 months ago
- Timeroasting scripts by Tom Tervoort☆277Updated last year
- Dump NTDS with golden certificates and UnPAC the hash☆633Updated last year
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆290Updated 4 months ago
- Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The…☆346Updated 2 years ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆351Updated last month
- Roast in the Middle☆290Updated 4 months ago
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆356Updated 10 months ago
- Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and …☆123Updated 9 months ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆141Updated last year