CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
☆294Jul 27, 2021Updated 4 years ago
Alternatives and similar repositories for CredPhish
Users that are interested in CredPhish are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- HTTP Server serving obfuscated Powershell Scripts/Payloads☆95Jul 3, 2021Updated 5 years ago
- Using outlook COM objects to create convincing phishing emails without the user noticing. This project is meant for internal phishing.☆157Dec 22, 2020Updated 5 years ago
- Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.☆1,585Nov 9, 2021Updated 4 years ago
- ☆427Apr 28, 2021Updated 5 years ago
- A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…☆878Mar 20, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆135Dec 19, 2020Updated 5 years ago
- Windows Privilege Escalation from User to Domain Admin.☆1,464Dec 18, 2022Updated 3 years ago
- DCSync Attack from Outside using Impacket☆118May 2, 2022Updated 4 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Aug 1, 2021Updated 4 years ago
- Remotely enables Restricted Admin Mode☆214Sep 3, 2021Updated 4 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆373Dec 24, 2021Updated 4 years ago
- A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.☆297Aug 18, 2023Updated 2 years ago
- Hide your payload in DNS☆622May 3, 2023Updated 3 years ago
- ☆134Jul 14, 2021Updated 5 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Self-developed tools for Lateral Movement/Code Execution☆724Aug 17, 2021Updated 4 years ago
- rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication…☆44Mar 22, 2021Updated 5 years ago
- ☆1,703Apr 14, 2025Updated last year
- Get file less command execution for lateral movement.☆639Jun 3, 2022Updated 4 years ago
- ☆536Nov 20, 2021Updated 4 years ago
- Small and convenient C2 tool for Windows targets☆617Mar 8, 2022Updated 4 years ago
- BadAssMacros - C# based automated Malicous Macro Generator.☆442Jan 8, 2022Updated 4 years ago
- An Office365 User Attack Tool☆652Mar 19, 2024Updated 2 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆271Mar 18, 2021Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A C2 post-exploitation framework☆486Jan 24, 2024Updated 2 years ago
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆886Mar 29, 2021Updated 5 years ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,679Aug 28, 2025Updated 10 months ago
- c++ fully undetected shellcode launcher ;)☆976Jun 11, 2021Updated 5 years ago
- Retrieve LAPS password from LDAP☆446Feb 17, 2021Updated 5 years ago
- .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py☆614Feb 16, 2023Updated 3 years ago
- A User Impersonation tool - via Token or Shellcode injection☆422May 21, 2022Updated 4 years ago
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,176Sep 29, 2021Updated 4 years ago
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆501May 16, 2023Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- SharpHook is an offensive API hooking tool designed to catch various credentials within the API call.☆321Jul 1, 2021Updated 5 years ago
- "Golden" certificates☆715Aug 17, 2024Updated last year
- C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!☆181Aug 4, 2021Updated 4 years ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆752Feb 24, 2026Updated 4 months ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆453Feb 16, 2026Updated 5 months ago
- Identify common attack paths to get Domain Administrator☆21Aug 20, 2019Updated 6 years ago
- Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.☆517Sep 23, 2020Updated 5 years ago