CredPhish Save

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

Project README

CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies on CredentialPicker to collect user passwords, Resolve-DnsName for DNS exfiltration, and Windows Defender's ConfigSecurityPolicy.exe to perform arbitrary GET requests.

For a walkthrough, see the Black Hills Infosec publication.

Open Source Agenda is not affiliated with "CredPhish" Project. README Source: tokyoneon/CredPhish
Stars
278
Open Issues
2
Last Commit
2 years ago
Repository
tokyoneon/CredPhish
Homepage
https://www.blackhillsinfosec.com/how-to-phish-for-user-passwords-with-powershell/
Tags
Amsi Antivirus Evasion Backdoor Bypass Antivirus C2 Dns Dns Server Exfiltration Information Security Kali Kali Linux Kali Scripts Offensive Security Penetration Testing Reverse Shell Shell Social Engineering

Open Source Agenda Badge

Open Source Agenda Rating
Submit Review Review Your Favorite Project
Submit Resource Articles, Courses, Videos
Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?