ss23 / evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for evilginx2
- Custom Evilginx2 Docker container without any IOCs or Evilginx Eggs..☆10Updated 2 years ago
- Searches for employees of a company on linkedin, generates a list of possible emails and verifies them.☆43Updated last month
- sturdy-chainsaw☆52Updated last year
- A small executable to trick a user to authenticate using code matching MFA☆69Updated last year
- Ready to go Phishing Platform☆34Updated last month
- quick and dirty proof-of-concept to hide shells in images☆49Updated 4 months ago
- PACU - Phishing Automation & Campaigning Utility☆39Updated 2 years ago
- A framework for OAuth 2.0 device code authentication grant flow phishing☆34Updated last year
- A C2 framework built for my bachelors thesis☆53Updated 3 weeks ago
- Reverse backdoor written in PowerShell and obfuscated with Python. It generates payloads for popular hacking devices like Flipper Zero an…☆29Updated last year
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- This is a working variant of the Mirai IOT botnet☆13Updated 2 years ago
- Top 400 passwords as per HaveIBeenPwned☆20Updated last month
- Slides and videos from talks given at cons☆12Updated 4 months ago
- ☆17Updated 11 months ago
- ☆77Updated 7 months ago
- Passworld is a fully customizable wordlist generator☆14Updated 2 months ago
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆38Updated last year
- A DMARC scanning and parsing tool.☆32Updated 3 years ago
- A PHP script demonstrating cookie stealing by capturing and logging request information, including the victim's cookie, IP address, HTTP …☆32Updated last year
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆30Updated last year
- Tool for bypassing logins vulnerable against SQL injection☆45Updated 7 months ago
- RedBlock is an Nginx module designed for offensive security operations and red teaming. This module empowers security professionals to ea…☆19Updated 10 months ago
- Fast Path Traversal exploitation tool☆21Updated 7 months ago
- Windows priviledge escalation script☆13Updated last year
- Tools used for Pentesting☆22Updated last year
- ☆40Updated last year
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It provides…☆12Updated 6 months ago
- A script to automate keystrokes through a graphical desktop program.☆33Updated 3 weeks ago