EvilClippy
EvilClippy is a cross-platform tool that helps create malicious MS Office documents. It can hide VBA macros, stomp VBA code (via P-Code), and confuse macro analysis tools. It runs on Linux, OSX, and Windows. This tool is useful for penetration testers and red teamers who want to create realistic phishing attacks or test an organization's defenses against malicious Office documents. EvilClippy provides a range of features that make it easy to create sophisticated malicious documents, including the ability to hide VBA macros and confuse macro analysis tools.
FEATURES
ALTERNATIVES
A practical guide on NTLM relaying for Active Directory attacks.
A simple file format fuzzer for Android that can fuzz multiple readers at once
A tool that finds more information about a given URL or domain by querying multiple data sources.
Using Apache mod_rewrite rules to rewrite incident responder or security appliance requests to an innocuous website or the target's real website.
A black-box obfuscation tool for Android apps with Android App Bundle support.
Collection of vulnerable ARM binaries for beginner vulnerability researchers & exploit developers.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.