AabyssZG/WebShell-Bypass-Guide external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

AabyssZG/WebShell-Bypass-Guide

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/AabyssZG/WebShell-Bypass-Guide)

Close

AabyssZG / WebShell-Bypass-GuideView on GitHubMore

• External links
• Readme badge

从零学习Webshell免杀手册

☆1,826May 24, 2025Updated 11 months ago

Alternatives and similar repositories for WebShell-Bypass-Guide

Users that are interested in WebShell-Bypass-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,188Aug 21, 2025Updated 8 months ago
• KimJun1010 / WeblogicTool

  View on GitHub
  WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
  ☆1,784Nov 1, 2023Updated 2 years ago
• lemono0 / FastJsonParty

  View on GitHub
  FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
  ☆1,205Jul 12, 2024Updated last year
• White-hua / Apt_t00ls

  View on GitHub
  高危漏洞利用工具
  ☆1,835Feb 12, 2025Updated last year
• AabyssZG / SpringBoot-Scan

  View on GitHub
  针对SpringBoot的开源渗透框架，以及Spring相关高危漏洞利用工具
  ☆2,268Nov 9, 2025Updated 5 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,472Apr 25, 2024Updated 2 years ago
• chainreactors / gogo

  View on GitHub
  面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
  ☆2,050Feb 3, 2026Updated 2 months ago
• Ghr07h / Heimdallr

  View on GitHub
  一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
  ☆1,665Jan 19, 2023Updated 3 years ago
• tib36 / PhishingBook

  View on GitHub
  红蓝对抗：钓鱼演练资源汇总&备忘录
  ☆1,165Nov 6, 2024Updated last year
• zema1 / suo5

  View on GitHub
  高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
  ☆2,708Feb 2, 2026Updated 2 months ago
• gh0stkey / HaE

  View on GitHub
  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
  ☆4,162Updated this week
• dark-kingA / superSearchPlus

  View on GitHub
  superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集 敏感信息提取 js资源扫描 目录扫描 vue组件扫描 整合了目前常见的资产测绘平台 专为白帽子提供快速侦测目标。
  ☆1,437Dec 16, 2024Updated last year
• xiaogang000 / XG_NTAI

  View on GitHub
  用于Webshell木马免杀、流量加密传输，多多支持star
  ☆1,045Jun 27, 2025Updated 10 months ago
• biggerduck / RedTeamNotes

  View on GitHub
  红队笔记
  ☆2,139Mar 16, 2026Updated last month
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ekkoo-z / Z-Godzilla_ekp

  View on GitHub
  哥斯拉webshell管理工具二次开发规避流量检测设备
  ☆1,057Dec 2, 2025Updated 4 months ago
• Threekiii / Awesome-POC

  View on GitHub
  一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.
  ☆4,943Apr 23, 2026Updated last week
• SummerSec / ShiroAttack2

  View on GitHub
  shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
  ☆2,480Apr 12, 2026Updated 2 weeks ago
• W01fh4cker / LearnJavaMemshellFromZero

  View on GitHub
  【三万字原创】完全零基础从0到1掌握Java内存马，公众号：追梦信安
  ☆994May 25, 2025Updated 11 months ago
• SleepingBag945 / dddd

  View on GitHub
  dddd是一款使用简单的批量信息收集,供应链漏洞探测工具，旨在优化红队工作流，减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标
  ☆1,851Aug 2, 2024Updated last year
• Y4tacker / JavaSec

  View on GitHub
  a rep for documenting my study, may be from 0 to 0.1
  ☆2,266Mar 25, 2026Updated last month
• SexyBeast233 / SecDictionary

  View on GitHub
  实战沉淀字典
  ☆1,549Mar 17, 2026Updated last month
• SafeGroceryStore / MDUT

  View on GitHub
  MDUT - Multiple Database Utilization Tools
  ☆2,212Sep 22, 2023Updated 2 years ago
• LittleBear4 / OA-EXPTOOL

  View on GitHub
  OA综合利用工具，集合将近20款OA漏洞批量扫描
  ☆1,343Oct 28, 2023Updated 2 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,123Apr 10, 2026Updated 2 weeks ago
• EdgeSecurityTeam / EHole

  View on GitHub
  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
  ☆3,467Apr 2, 2024Updated 2 years ago
• cseroad / Webshell_Generate

  View on GitHub
  用于生成各类免杀webshell
  ☆1,299Jan 8, 2026Updated 3 months ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,217Jul 25, 2023Updated 2 years ago
• gh0stkey / CaA

  View on GitHub
  CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
  ☆1,458Mar 19, 2026Updated last month
• 0x727 / BypassPro

  View on GitHub
  对Auth/Waf 自动化bypass的burpsuite插件
  ☆1,130Feb 28, 2026Updated 2 months ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,839Oct 20, 2023Updated 2 years ago
• W01fh4cker / VcenterKit

  View on GitHub
  Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
  ☆1,245Oct 24, 2025Updated 6 months ago
• vaycore / OneScan

  View on GitHub
  OneScan 是一款用于递归目录扫描的 BurpSuite 插件
  ☆1,241Jun 24, 2025Updated 10 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Threekiii / Vulnerability-Wiki

  View on GitHub
  一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.
  ☆2,072Apr 23, 2026Updated last week
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,653Dec 15, 2025Updated 4 months ago
• dark-kingA / cloudTools

  View on GitHub
  云资产管理工具 目前工具定位是云安全相关工具，目前是两个模块 云存储工具、云服务工具， 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理，查看、执行命令、接管等等
  ☆1,149Feb 26, 2026Updated 2 months ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,253Mar 28, 2025Updated last year
• czz1233 / GBByPass

  View on GitHub
  冰蝎 哥斯拉 WebShell bypass
  ☆767Jan 15, 2026Updated 3 months ago
• Tsojan / TsojanScan

  View on GitHub
  An integrated BurpSuite vulnerability detection plug-in.
  ☆1,487Jan 29, 2026Updated 3 months ago
• ReaJason / MemShellParty

  View on GitHub
  一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
  ☆1,434Updated this week