LogoAISecKit
  • Search
  • Collection
  • Category
  • Tag
  • Blog
  • Pricing
  • Submit
LogoAISecKit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

LogoAISecKit

Curated directory of 1700+ AI tools, models, frameworks, MCP servers, and cybersecurity resources

GitHub
Product
  • Search
  • Collection
  • Category
  • Tag
Resources
  • Blog
  • Pricing
  • Submit
Company
  • About Us
  • Privacy Policy
  • Terms of Service
  • Sitemap
Copyright © 2026 All Rights Reserved.
Sponsored Resources
  1. Home
  3. Category
  7. TREVORspray
icon of TREVORspray

TREVORspray

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

Visit Website
image for TREVORspray
Visit Website

Introduction

TREVORspray

TREVORspray is a powerful modular password sprayer designed for security professionals and penetration testers. It offers a range of features that enhance its usability and effectiveness in testing password security across various platforms.

Key Features:
  • Modular Design: Easily extendable with custom spray modules to target different services.
  • Threading Support: Perform multiple requests concurrently to speed up the testing process.
  • Clever Proxying: Supports SSH and subnet proxying to obfuscate the source of requests.
  • Loot Modules: Extract valuable data from successful logins, including user information and offline address books.
  • User Enumeration: Efficiently enumerate users via OneDrive and other services.
  • MFA Bypass: Capable of bypassing Multi-Factor Authentication under certain conditions.
  • Comprehensive Logging: Keep track of all activities and results for better analysis.
Benefits:
  • Increased Efficiency: The ability to spray multiple accounts simultaneously saves time.
  • Customizability: Users can create their own modules tailored to specific needs.
  • Enhanced Security Testing: Helps organizations identify weak passwords and improve their security posture.
Highlights:
  • Supports various authentication methods including O365, ADFS, and Okta.
  • Automatic retry and reconnect features ensure continuous operation even in unstable network conditions.
  • Detailed help and documentation available for users to get started quickly.
Back

Information

  • Publisher
    AISecKit
  • Websitegithub.com
  • Published date2025/04/28

Categories

  • Incident Response Tools
  • Penetration Testing
  • Security Research

Tags

  • Exploit Development
  • Authentication
  • Authorization
  • Incident Response
  • Red Team Testing

More Products

image of Phantom
DevSecOps ToolsPenetration TestingVulnerability Scanners
Visit Website
icon of Phantom

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security AuditingOpen SourceIncident ResponseVulnerability ScanningAPI Security+1
E
Penetration TestingSecurity Training PlatformsAI Security Monitoring
Visit Website
icon of Exploiting AI

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt InjectionGenerative AIRed Team TestingData Poisoning
P
Input Validation & FilteringSecurity ResearchPrompt Injection Defense
Visit Website
icon of PINT Benchmark

PINT Benchmark

A benchmark for prompt injection detection systems, providing a neutral way to evaluate their performance.

Prompt InjectionModel RobustnessSecurity Auditing