tokyoneon / CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
☆295Updated 3 years ago
Alternatives and similar repositories for CredPhish:
Users that are interested in CredPhish are comparing it to the libraries listed below
- VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit☆434Updated last year
- Assist reverse tcp shells in post-exploration tasks☆219Updated last year
- Basic C2 Server☆190Updated 3 years ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆423Updated 2 years ago
- Hiding GoPhish from the boys in blue☆181Updated 2 years ago
- An Office365 User Attack Tool☆635Updated last year
- AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…☆300Updated last year
- Simple & Customizable DNS Data Exfiltrator☆109Updated last year
- A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.☆218Updated 3 years ago
- Automated Tool That Generates The Perfect Meterpreter Powershell Payload☆226Updated 3 years ago
- Malicious shortcut generator for collecting NTLM hashes from insecure file shares.☆327Updated 6 months ago
- Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and …☆353Updated this week
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆216Updated 4 years ago
- msImpersonate - User account impersonation written in pure Python3☆107Updated 2 years ago
- A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies☆317Updated 2 years ago
- Tricks the target into enabling content (macros) with fake messages. Once enabled, uses macros to reduce the risk of suspision from targe…☆170Updated last month
- Maximizing BloodHound. Max is a good boy.☆513Updated last week
- A script to test credentials against Active Directory Federation Services (ADFS), allowing password spraying or bruteforce attacks.☆172Updated 4 years ago
- A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.☆555Updated 3 years ago
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.☆439Updated last year
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆485Updated last year
- A *nix Enumerator & Auto Privilege Escalation tool.☆147Updated 3 years ago
- ☆408Updated last year
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆913Updated 10 months ago
- Password spraying and bruteforcing tool for Active Directory Domain Services☆366Updated 6 months ago
- ☆190Updated last year
- Password spraying tool and Bloodhound integration☆232Updated 4 months ago
- Kerberoast attack -pure python-☆431Updated last year
- PowerSploit - A PowerShell Post-Exploitation Framework☆232Updated 3 years ago
- Password Hunter in Active Directory☆198Updated 2 years ago