1. SocialengineeringpayloadsThis is a collection of social engineering tricks and payloads being used for credential theft and spear phishing attacks.
2. LazykatzLazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software.
3. Cve 2017 0199Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
4. Cve 2017 8759Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
5. DejavuDejaVU - Open Source Deception Framework
6. CVE-2021-33766ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit