secureworks / squarephish

Related projects ⓘ

Alternatives and complementary repositories for squarephish

• An0nUD4Y / Evilginx-Phishing-Infra-Setup
  Evilginx Phishing Engagement Infrastructure Setup Guide
  ☆301Updated last month
• fkasler / cuddlephish
  Weaponized Browser-in-the-Middle (BitM) for Penetration Testers
  ☆402Updated 3 months ago
• CravateRouge / autobloody
  Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
  ☆426Updated last week
• skelsec / evilrdp
  ☆280Updated 11 months ago
• grimlockx / ADCSKiller
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆702Updated last year
• dievus / lnkbomb
  Malicious shortcut generator for collecting NTLM hashes from insecure file shares.
  ☆307Updated 3 weeks ago
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆370Updated last year
• CICADA8-Research / RemoteKrbRelay
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆516Updated 4 months ago
• helviojunior / knowsmore
  KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).
  ☆209Updated 3 months ago
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆372Updated last year
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆309Updated last year
• Leo4j / Invoke-ADEnum
  Automated Active Directory Enumeration
  ☆414Updated last week
• aalex954 / evilginx2-TTPs
  Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and …
  ☆85Updated 4 months ago
• puzzlepeaches / sneaky_gophish
  Hiding GoPhish from the boys in blue
  ☆173Updated last year
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆265Updated last week
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆452Updated 2 years ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆213Updated last year
• puzzlepeaches / awesome-password-spraying
  Everything and anything related to password spraying
  ☆126Updated 6 months ago
• zblurx / certsync
  Dump NTDS with golden certificates and UnPAC the hash
  ☆623Updated 8 months ago
• Drew-Sec / EvilSlackbot
  A Slack bot phishing framework for Red Teaming exercises
  ☆159Updated 6 months ago
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆351Updated last month
• jfjallid / go-secdump
  Tool to remotely dump secrets from the Windows registry
  ☆401Updated 3 months ago
• Flangvik / Bobber
  Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
  ☆158Updated 5 months ago
• MarkoH17 / Spray365
  Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The…
  ☆343Updated 2 years ago
• kleiton0x00 / RedditC2
  Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…
  ☆254Updated last year
• p0dalirius / LDAPWordlistHarvester
  A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
  ☆332Updated 3 weeks ago
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆131Updated last year
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆164Updated 3 months ago
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheatsheets learned from engagements
  ☆425Updated last month