Beast code in Giters

jukelennings's starred repositories

holehe

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

Language:PythonGPL-3.0739100

rogueapps

When good OAuth apps go rogue. Documents observed OAuth application tradecraft

Language:TypeScriptMPL-2.04100

BLTools

[BLTools] Best Logs Cookies Checker by boyring

2600

AITMWorker

Proof of concept: using a Cloudflare worker for AITM attacks

Language:JavaScriptMIT8600

evilgophish

evilginx3 + gophish

Language:GoMIT162200

HackBrowserData

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Language:GoMIT1073200

SharpChromium

.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

Language:C#68300

deviceCode2SecurityKey

PoC to add a security key to Entra ID via device code phishing

Language:Python1100

SWArevealer

Language:Go200

EvilSlackbot

A Slack bot phishing framework for Red Teaming exercises

Language:Python15200

OktaPostExToolkit

Language:Python16800

power-pwn

An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform

Language:PythonMIT76400

saas-attacks

Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

CC-BY-4.0115800