Movatterモバイル変換

tokyoneon/CredPhishPublic

NotificationsYou must be signed in to change notification settings
Fork45
Star290

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

www.blackhillsinfosec.com/how-to-phish-for-user-passwords-with-powershell/

290 stars 45 forks Branches Tags Activity

Star

Notifications

You must be signed in to change notification settings

Branches Tags

Folders and files

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
images		images
README.md		README.md
credphish.ps1		credphish.ps1
dns_server.py		dns_server.py

Repository files navigation

CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies onCredentialPicker to collect user passwords,Resolve-DnsName for DNS exfiltration, and Windows Defender'sConfigSecurityPolicy.exe to perform arbitrary GET requests.

For a walkthrough, see theBlack Hills Infosec publication.

About

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

www.blackhillsinfosec.com/how-to-phish-for-user-passwords-with-powershell/

Releases

No releases published

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Languages

Movatterモバイル変換

tokyoneon/CredPhish

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Languages