0xbad53c/webshells external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xbad53c/webshells

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xbad53c/webshells)

Close

0xbad53c / webshellsView on GitHubMore

• External links
• Readme badge

My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the internet.

☆21May 20, 2024Updated last year

Alternatives and similar repositories for webshells

Users that are interested in webshells are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• cream-sec / JSPHorse

  View on GitHub
  结合反射调用、动态编译、BCEL、defineClass0，ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具
  ☆19Dec 16, 2021Updated 4 years ago
• xenoscr / SharpMailBOF

  View on GitHub
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Jun 24, 2021Updated 4 years ago
• cri1wa / MemShell

  View on GitHub
  支持常见中间件无文件落地冰蝎内存马注入&&文件上传agent冰蝎马注入
  ☆34Mar 17, 2023Updated 3 years ago
• Cobalt-Strike / callback_examples

  View on GitHub
  This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions
  ☆38Mar 17, 2025Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• thesnoom / extps-cobalt-strike-bof

  View on GitHub
  Extended Process List (Search functionality)
  ☆29Jan 23, 2021Updated 5 years ago
• Johnng007 / Black-Widow

  View on GitHub
  A collection of Script for Red Team & Incidence Response
  ☆11Jun 30, 2022Updated 3 years ago
• Karkas66 / EarlyCascadeImprooved

  View on GitHub
  an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code
  ☆22Feb 20, 2025Updated last year
• ceramicskate0 / BOF-Builder

  View on GitHub
  C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
  ☆25Jul 25, 2023Updated 2 years ago
• xenoscr / compressedCredBandit

  View on GitHub
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Jun 24, 2021Updated 4 years ago
• Henkru / cs-get-last-error

  View on GitHub
  An aggressor script for Cobalt Strike to query Windows' GetLastError messages
  ☆18Sep 25, 2022Updated 3 years ago
• emcghee / PayloadAutomation

  View on GitHub
  ☆121Jun 17, 2022Updated 3 years ago
• ChoiSG / GwisinMsi

  View on GitHub
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆24Sep 19, 2022Updated 3 years ago
• wheelerlaw / go-mimikatz

  View on GitHub
  An improvement over the original Mimikatz wrapper.
  ☆19Aug 11, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• parzel / GoSleepyCrypt

  View on GitHub
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆40Jan 14, 2024Updated 2 years ago
• m09046105 / xiaoyi

  View on GitHub
  自动批量检测java相关组件的rce漏洞，包括weblogic、struts2、shiro
  ☆19Jan 3, 2020Updated 6 years ago
• strozfriedberg / EDRSilencer-BOF

  View on GitHub
  Port of the EDRSilencer tool (https://github.com/netero1010/EDRSilencer) to BOF format
  ☆34Oct 22, 2024Updated last year
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• irgoncalves / ms17-010

  View on GitHub
  This contains a bundle with an executable to exploit ms17-010 remote or locally. It does not require Python.
  ☆16Jan 10, 2019Updated 7 years ago
• HackingThings / SuperSneakyExec

  View on GitHub
  Loading and executing shellcode in C# without PInvoke.
  ☆22Jan 10, 2022Updated 4 years ago
• netero1010 / Quser-BOF

  View on GitHub
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆87Mar 22, 2023Updated 3 years ago
• kymb0 / Stealth_shellcode_runners

  View on GitHub
  ☆57Mar 25, 2024Updated 2 years ago
• wangfly-me / DomainInfo_Find

  View on GitHub
  批量获取域内机器桌面文件
  ☆80Sep 6, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• boku7 / xPipe

  View on GitHub
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆97Mar 8, 2023Updated 3 years ago
• saucer-man / exploit

  View on GitHub
  exp for useful vuln
  ☆11Jul 9, 2021Updated 4 years ago
• irredteam / irredteam.github.io

  View on GitHub
  Some Cheat Sheet for Red Team
  ☆17Dec 30, 2022Updated 3 years ago
• its-a-feature / macOSCameraCapture

  View on GitHub
  Simple CLI utility to save off an image from every webcam hooked into a mac
  ☆14May 20, 2021Updated 4 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• jmgk77 / PDL

  View on GitHub
  A tool/library to proxify DLL
  ☆38Apr 10, 2022Updated 4 years ago
• LuxNoBulIshit / Smug_Fu3k

  View on GitHub
  ☆53Apr 1, 2022Updated 4 years ago
• tomcarver16 / BOF-DLL-Inject

  View on GitHub
  Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
  ☆152Sep 3, 2020Updated 5 years ago
• t4kemyh4nd / postMessageLab

  View on GitHub
  ☆15Aug 27, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• TheKevinWang / HellsRunPE

  View on GitHub
  RunPE using Hell's Gate technique.
  ☆32Dec 4, 2020Updated 5 years ago
• guervild / BOFs

  View on GitHub
  Cobalt Strike Beacon Object Files
  ☆167May 2, 2022Updated 4 years ago
• EspressoCake / DLL-Exports-Extraction-BOF

  View on GitHub
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆90Nov 5, 2021Updated 4 years ago
• Octoberfest7 / Backstab_BOF

  View on GitHub
  Beacon Object File implementation of Yaxser's Backstab
  ☆15Mar 9, 2022Updated 4 years ago
• buffermet / bug-bounty-tools

  View on GitHub
  Collection of HTTP scanners and fuzzers.
  ☆11Jan 23, 2025Updated last year
• Octoberfest7 / KillDefender_BOF

  View on GitHub
  Beacon Object File implementation of pwn1sher's KillDefender
  ☆67Jun 28, 2022Updated 3 years ago
• RogueValleyInformationSecurity / ntlmv1

  View on GitHub
  ☆12Oct 10, 2024Updated last year