Social Engineering
6 tools
Man-in-the-middle attack framework for phishing login credentials and session cookies to bypass 2-factor authentication. Successor to Evilginx, fully rewritten in Go with built-in HTTP and DNS servers for easy setup.
Open-source phishing toolkit for businesses and penetration testers. Enables quick setup and execution of phishing engagements and security awareness training.
Phishery is a simple SSL-enabled HTTP server for phishing credentials via Basic Authentication. It excels at injecting phishing URLs into Word document templates to trigger authentication dialogs in Microsoft Word.
SendEmail is a lightweight, command line SMTP email client designed for use in scripts and programs. It requires no special modules and offers a straightforward interface for sending emails.
SharpShooter is a payload creation framework for retrieving and executing arbitrary C# source code. It generates payloads in formats including HTA, JS, VBS, and WSF.
The Social-Engineer Toolkit (SET) is an open-source Python-driven tool for penetration testing focused on social-engineering attacks. It provides a menu-driven interface for various social-engineering and penetration testing modules.