Evilginx2
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
Imagine you are performing a Red Team engagement and want to reduce the risk of being caught by using a redirector host to filter C2 traffic to your Cobalt Strike server and redirect all other traffic to an innocuous website. One way to achieve this is by setting up an Apache redirector as an intermediary server, allowing your C2 domain to point at it for traffic filtering. This setup provides the benefit of being able to change the redirector's IP and domain if your main server is compromised.
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
A Ruby framework designed to aid in the penetration testing of WordPress systems.
Weaponize Word documents with PowerShell Empire using the Microsoft DDE exploit.
Metta is an information security preparedness tool for adversarial simulation.
An exploration of a new method to abuse DCOM for remote payload execution and lateral movement.
Parrot Security OS is a comprehensive, secure, and customizable operating system for cybersecurity professionals, offering over 600+ tools and utilities for red and blue team operations.