People tracker on the Internet: OSINT analysis and research tool by Jose Pino

Fluxion is a remake of linset by vk496 with enhanced functionality.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

A curated list of awesome social engineering resources.

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

A collection of more than a 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Penetration Testing and IT Security audits purposes. Most of them came handy at least once during my real-world engagements.

Handbook of information collection for penetration testing and src

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.

Phishing on Twitter

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

Tool made to automate tasks of pentesting.

Your Social Engineering Sidekick

Advanced Attack toolkit, Native C++ RAT, Instagram Brute Force and Password Spraying over Tor, Mass Emailer, Malicious file Sentinel and more.

An open source batch script based WiFi Passview for Windows!

Using Social Engineering To Obtain WiFi Passwords

Generate Professional Phishing Emails Fast And Easy

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

A simple phishing tool that can phish almost any website

CredsStealer allows an attacker to craft a highly convincing credentials prompt using Windows PromptForCredential, validate it against the DC or localmachine and in turn leak it via an HTTP request.

使用Go语言编写的社工字典生成器(The social engineering dictionary generator written by Go)

It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

Skeleton is a Social Engineering tool attack switcher

A torrent site written in the python language & douban scraper

Argus Advanced Remote & Local Keylogger For macOS and Windows

Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other obfuscation techniques.

"Socialx" is a Social Engineering And Remote Access Trojan Tool. You can generate fud backdoor and you can embed any file you want inside of the exe file.

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

💣 Sms Bomber for Russia and Ukraine