Password spraying using AWS Lambda for IP rotation
☆656Feb 14, 2023Updated 3 years ago
Alternatives and similar repositories for CredKing
Users that are interested in CredKing are comparing it to the libraries listed below
Sorting:
- CredSniper is a phishing framework written with the Python micro-framework Flask and Jinja2 templating which supports capturing 2FA token…☆1,379May 22, 2020Updated 5 years ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,213Aug 7, 2025Updated 6 months ago
- AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation☆2,219Apr 3, 2023Updated 2 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆2,022Jul 11, 2024Updated last year
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,556Oct 17, 2022Updated 3 years ago
- A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…☆1,077Mar 19, 2024Updated last year
- Domain Password Audit Tool for Pentesters☆1,024Dec 24, 2025Updated 2 months ago
- linikatz is a tool to attack AD on UNIX☆595Oct 19, 2023Updated 2 years ago
- Chameleon: A tool for evading Proxy categorisation☆512Nov 28, 2024Updated last year
- PowerShell Pass The Hash Utils☆1,724Dec 9, 2018Updated 7 years ago
- Search for categorized domain☆453Jan 15, 2019Updated 7 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆383Aug 17, 2018Updated 7 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆399May 20, 2020Updated 5 years ago
- PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and…☆573Jul 3, 2025Updated 8 months ago
- Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain name…☆1,643Jun 6, 2024Updated last year
- locate and attack Lync/Skype for Business☆346Oct 1, 2024Updated last year
- Search for potential frontable domains☆644Mar 22, 2023Updated 2 years ago
- HTA encryption tool for RedTeams☆1,422Nov 9, 2022Updated 3 years ago
- ☆110May 14, 2018Updated 7 years ago
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,309Nov 22, 2022Updated 3 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆633Jun 20, 2017Updated 8 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,916Nov 19, 2025Updated 3 months ago
- Credential and Red Teaming Defense for Windows Environments☆330Jul 17, 2024Updated last year
- Powershell C2 Server and Implants☆575Nov 11, 2019Updated 6 years ago
- Username enumeration and password spraying tool aimed at Microsoft O365.☆979Nov 6, 2024Updated last year
- Wiki to collect Red Team infrastructure hardening resources☆4,450Oct 1, 2025Updated 5 months ago
- This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…☆463Oct 3, 2017Updated 8 years ago
- Payload Generation Framework☆1,972Aug 21, 2024Updated last year
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆289Oct 31, 2018Updated 7 years ago
- Dump Azure AD Connect credentials for Azure AD and Active Directory☆782Aug 26, 2025Updated 6 months ago
- A Python based ingestor for BloodHound☆2,347Oct 24, 2025Updated 4 months ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆854Mar 23, 2018Updated 7 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆251Sep 25, 2018Updated 7 years ago
- A tool to abuse Exchange services☆2,300Jun 10, 2024Updated last year
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,263Mar 19, 2025Updated 11 months ago
- Simple C# for checking for the existence of credential files related to AWS, Microsoft Azure, and Google Compute.☆177Sep 18, 2018Updated 7 years ago
- A Burp Suite Extension to pull Employee Names from Google and Bing LinkedIn Search Results☆207Jul 6, 2024Updated last year
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,128Feb 10, 2021Updated 5 years ago
- Run PowerShell command without invoking powershell.exe☆1,533Mar 23, 2023Updated 2 years ago