puzzlepeaches/sneaky_gophish: Hiding GoPhish from the boys in blue
February 24, 2025 at 4:23:58 PM UTC * - permalink -

- https://github.com/puzzlepeaches/sneaky_gophish

Wishing: Webhook Phishing in Teams - Black Hills Information Security
March 15, 2024 at 10:22:34 AM UTC - permalink -

- https://www.blackhillsinfosec.com/wishing-webhook-phishing-in-teams/

Device Code Phishing – Compass Tooling – Compass Security Blog
March 7, 2024 at 4:56:21 PM UTC - permalink -

- https://blog.compass-security.com/2023/10/device-code-phishing-compass-tooling/

Confirm your account recovery settings
March 7, 2024 at 4:56:04 PM UTC - permalink -

- https://github.com/rvrsh3ll/TokenTactics

Dynamic Device Code Phishing  - Black Hills Information Security
March 7, 2024 at 4:55:44 PM UTC - permalink -

- https://www.blackhillsinfosec.com/dynamic-device-code-phishing/

ROADtools Token eXchange (roadtx) · dirkjanm/ROADtools Wiki
February 26, 2024 at 11:01:56 AM UTC - permalink -

- https://github.com/dirkjanm/ROADtools/wiki/ROADtools-Token-eXchange-(roadtx)

f-bader/TokenTacticsV2: A fork of the great TokenTactics with support for CAE and token endpoint v2
February 26, 2024 at 11:01:43 AM UTC - permalink -

- https://github.com/f-bader/TokenTacticsV2

Home | delivr.to
February 26, 2024 at 9:36:57 AM UTC - permalink -

- https://delivr.to/

Hook, Line, and Phishlet: Conquering AD FS with Evilginx · Aura Research Division
October 25, 2023 at 11:23:17 AM UTC - permalink -

- https://research.aurainfosec.io/pentest/hook-line-and-phishlet/

Homoglyph Attack Generator and Punycode Converter
June 8, 2023 at 9:32:48 AM UTC - permalink -

- https://www.irongeek.com/homoglyph-attack-generator.php

Unicode Utilities: Confusables
June 8, 2023 at 9:18:24 AM UTC - permalink -

- https://util.unicode.org/UnicodeJsps/confusables.jsp

muraenateam/muraena: Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.
January 18, 2023 at 3:29:21 PM UTC - permalink -

- https://github.com/muraenateam/muraena

Muraena-the-unexpected-phish - D2T1 - Muraena - The Unexpected Phish - Michele Orru & Giuseppe Trotta.pdf
December 1, 2022 at 2:35:30 PM UTC - permalink -

- https://conference.hitb.org/hitbsecconf2019ams/materials/D2T1%20-%20Muraena%20-%20The%20Unexpected%20Phish%20-%20Michele%20Orru%20&%20Giuseppe%20Trotta.pdf

optiv/Ivy: Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
January 12, 2022 at 3:34:45 PM UTC - permalink -

- https://github.com/optiv/Ivy

Fun with Creating a VBS Payload to Bypass Endpoint Security | by Jason Ostrom | InfoSec Write-ups
December 5, 2021 at 12:30:51 AM UTC - permalink -

- https://infosecwriteups.com/fun-with-creating-a-vbs-payload-to-bypass-endpoint-security-and-other-layers-44afd724de1b

9 mail/mailx command examples to send emails from command line on Linux - BinaryTides
November 19, 2021 at 8:09:14 PM UTC - permalink -

- https://www.binarytides.com/linux-mailx-command/

endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7
December 1, 2020 at 11:29:43 AM UTC - permalink -

- https://endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7

moohax/Proof-Pudding: Copy cat model for Proofpoint
November 24, 2020 at 11:27:06 AM UTC - permalink -

- https://github.com/moohax/Proof-Pudding

Introducing a new phishing technique for compromising Office 365 accounts
October 29, 2020 at 9:09:26 AM UTC - permalink -

- https://o365blog.com/post/phishing/

kgretzky/evilginx2: Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
October 19, 2020 at 9:57:40 AM UTC - permalink -

- https://github.com/kgretzky/evilginx2