pwndrop Pwndrop - Self-hosting Your Red Team Payloads Pwndrop is a self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
evilginx Evilginx 2.3 - Phisherman's Dream Welcome to 2019! As was noted, this will be the year of phishing automation. We've already seen a release of new reverse-proxy tool Modlishka and it is only January. This
evilginx Evilginx 2.2 - Jolly Winter Update Tis the season to be phishing! I've finally found some free time and managed to take a break to work on preparing a treat for all of you phishing enthusiasts
evilginx Evilginx 2.1 - The First Post-Release Update About 2 months ago, I've released Evilginx 2. Since then, a lot of you reported issues or wished for specific features. Your requests have been heard! I've finally managed to
hacking Evilginx 1.1 Release Hello! Today I am bringing you another release of Evilginx with more bug fixes and added features. The development is going very well and the feedback from you is terrific.
hacking Evilginx 1.0 Update - Up Your Game in 2FA Phishing Welcome back! It's been just a couple of weeks since Evilginx release and I'm already swimming in amazing feedback. This encouraged me to spend more time on this project and
hacking Evilginx - Advanced Phishing with Two-factor Authentication Bypass Welcome to my new post! Over the past several months I've been researching new phishing techniques that could be used in penetration testing assignments. Almost every assignment starts with grabbing
hacking Sniping Insecure Cookies with XSS In this post I want to talk about improper implementation of session tokens and how one XSS vulnerability can result in full compromise of a web application. The following analysis
hacking How I Hacked an Android App to Get Free Beer Just recently I stumbled upon an Android app that lets you receive free products in various pubs, restaurants or cafes in exchange for points accumulated with previous purchases. When the
assembly Defeating Antivirus Real-time Protection From The Inside Hello again! In this post I'd like to talk about the research I did some time ago on antivirus real-time protection mechanism and how I found effective ways to evade
