EvilClippy Logo

EvilClippy

0
Free
Updated 11 March 2025
Offensive Security
Appsec
Phishing
Red Team
Penetration Testing
Visit Website

EvilClippy is a cross-platform tool that helps create malicious MS Office documents. It can hide VBA macros, stomp VBA code (via P-Code), and confuse macro analysis tools. It runs on Linux, OSX, and Windows. This tool is useful for penetration testers and red teamers who want to create realistic phishing attacks or test an organization's defenses against malicious Office documents. EvilClippy provides a range of features that make it easy to create sophisticated malicious documents, including the ability to hide VBA macros and confuse macro analysis tools.

FEATURES

EXPLORE BY TAGS

Appsec

Phishing

Red Team

Penetration Testing

SIMILAR TOOLS

PwnAuth Logo
PwnAuth

PwnAuth is an open-source tool for generating and managing authentication tokens for penetration testing and red teaming exercises.

Free
Offensive Security
SharpSploit Logo
SharpSploit

A comprehensive .NET post-exploitation library designed for advanced security testing.

Free
Offensive Security
Dendrobate Logo
Dendrobate

A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.

Free
Offensive Security
Ophcrack Logo
Ophcrack

Ophcrack is a free Windows password cracker based on rainbow tables with various features for password recovery.

Free
Offensive Security
exploit_me Logo
exploit_me

Very vulnerable ARM/ARM64[AARCH64] application with various levels of vulnerabilities for exploitation training.

Free
Offensive Security
Turbo Intruder Logo
Turbo Intruder

A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

Free
Offensive Security
XAHICO Platform Logo
XAHICO Platform

XAHICO Web Platform is a cloud-based solution for vulnerability detection, penetration testing, and adversary simulation, accessible through web browsers and suitable for various user levels.

Commercial
Offensive Security
Modlishka Logo
Modlishka

Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.

Free
Offensive Security
Browser Exploitation Framework (BeEF) Logo
Browser Exploitation Framework (BeEF)

A penetration testing tool that focuses on web browser exploitation

Free
Offensive Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy