# Social Engineering

Manipulation techniques that exploits human error to gain private information, access, or valuables.

# Phishing

  • espoofer - An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures. last-commit
  • Evilgnix - MITM attack framework used for phishing credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection. last-commit
  • Fierce Phish - A full-fledged phishing framework to manage all phishing engagements. last-commit
  • GoPhish - Phishing toolkit designed for businesses and penetration testers.
  • Judas - A pluggable phishing proxy. last-commit
  • King Phisher - A tool for testing and promoting user awareness by simulating real world phishing attacks. last-commit
  • Lucy - Allows companies to take on the role of an attacker to discover and eliminate existing weaknesses.
  • Modlishka - Flexible and powerful reverse proxy with real-time two-factor authentication. last-commit
  • Phishing Frenzy - Ruby on Rails Phishing Framework. last-commit
  • Shell Phish - A Phishing tool to replicate various. last-commit
  • Social Engineering Toolkit - Penetration testing framework designed for social engineering. last-commit
  • Social Fish - Phishing framework. last-commit
  • SpeedPhish Framework - Tool designed to allow for quick recon and deployment of simple social engineering phishing exercises. last-commit
  • SPT Project - Phishing education toolkit that aims to help in securing the mind as opposed to securing computers. last-commit


  • SMSSpoof - Send an SMS message to someone and change who it's from (the Sender). last-commit