waelmas / frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
☆394Updated 10 months ago
Alternatives and similar repositories for frameless-bitb:
Users that are interested in frameless-bitb are comparing it to the libraries listed below
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆383Updated 3 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆476Updated 4 months ago
- Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and …☆124Updated 9 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆567Updated 9 months ago
- ☆290Updated last year
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆541Updated 4 months ago
- JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…☆355Updated last week
- Tool to remotely dump secrets from the Windows registry☆448Updated last month
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆410Updated 2 weeks ago
- ☆288Updated 9 months ago
- Active Directory Auditing and Enumeration☆438Updated last week
- Amsi Bypass payload that works on Windwos 11☆375Updated last year
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆351Updated last month
- ☆534Updated last year
- This is for Ethical Use only.☆254Updated last week
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆307Updated 7 months ago
- A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them bi…☆342Updated 3 weeks ago
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆508Updated last week
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆267Updated last week
- ☆232Updated this week
- Open-Source Phishing Toolkit☆168Updated 5 months ago
- Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.☆287Updated 9 months ago
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆166Updated 9 months ago
- NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.☆149Updated 2 months ago
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆673Updated 2 weeks ago
- ☆190Updated 6 months ago
- A collection of red teaming and adversary emulation related tools, scripts, techniques, notes, etc☆294Updated 7 months ago
- ☆295Updated 3 weeks ago
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆159Updated last year
- A RedTeam Toolkit☆394Updated this week