waelmas / frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
☆372Updated 8 months ago
Alternatives and similar repositories for frameless-bitb:
Users that are interested in frameless-bitb are comparing it to the libraries listed below
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆339Updated 2 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆447Updated 3 months ago
- JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…☆348Updated last month
- A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them bi…☆336Updated 7 months ago
- Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and …☆114Updated 7 months ago
- ☆288Updated last year
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆552Updated 7 months ago
- Tool to remotely dump secrets from the Windows registry☆427Updated 2 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆395Updated 3 weeks ago
- ☆530Updated 10 months ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆346Updated last week
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆217Updated 6 months ago
- C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.☆364Updated last month
- DPAPI looting remotely and locally in Python☆441Updated last month
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆516Updated 3 months ago
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆545Updated this week
- ☆295Updated 2 months ago
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆163Updated 8 months ago
- Collection of OPSEC Tradecraft and TTPs for Red Team Operations☆284Updated 2 weeks ago
- A Slack bot phishing framework for Red Teaming exercises☆164Updated 9 months ago
- Lab used for workshop and CTF☆172Updated 2 weeks ago
- Amsi Bypass payload that works on Windwos 11☆375Updated last year
- ✉️ HTML Smuggling generator&obfuscator for your Red Team operations☆161Updated 11 months ago
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8☆350Updated 5 months ago
- NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.☆141Updated last month
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆241Updated this week
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆159Updated last year
- ☆188Updated 4 months ago
- ☆271Updated last year
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆305Updated 6 months ago