Statically-linked ssh server with reverse shell functionality for CTFs and such
☆1,033Feb 15, 2023Updated 3 years ago
Alternatives and similar repositories for reverse-ssh
Users that are interested in reverse-ssh are comparing it to the libraries listed below
Sorting:
- SSH based reverse shell☆1,329Jan 27, 2026Updated last month
- A small reverse shell for Linux & Windows☆619Jun 5, 2024Updated last year
- Monitor linux processes without root permissions☆5,927Mar 1, 2026Updated 2 weeks ago
- An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.☆4,366Feb 15, 2026Updated last month
- PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.☆2,196Aug 15, 2024Updated last year
- Fancy reverse and bind shell handler☆2,873Aug 9, 2024Updated last year
- A tool to make socks connections through HTTP agents☆719Mar 30, 2021Updated 4 years ago
- Dumping DPAPI credz remotely☆1,337Mar 24, 2025Updated 11 months ago
- Windows Privilege Escalation from User to Domain Admin.☆1,451Dec 18, 2022Updated 3 years ago
- Adversary Emulation Framework☆10,838Updated this week
- Penelope Shell Handler☆1,603Mar 12, 2026Updated last week
- Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.☆5,085Feb 25, 2026Updated 3 weeks ago
- Self‑healing Gossip Mesh C2 with Assisted Peer Discovery, Modular Post‑Exploitation, and OPSEC‑Focused Transport☆1,691Mar 8, 2026Updated last week
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,541Jan 18, 2026Updated 2 months ago
- Abusing impersonation privileges through the "Printer Bug"☆2,204Sep 10, 2020Updated 5 years ago
- Privilege Escalation Enumeration Script for Windows☆3,728Jan 30, 2026Updated last month
- Sandman is a NTP based backdoor for hardened networks.☆816Mar 31, 2024Updated last year
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,812Sep 4, 2024Updated last year
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,518Apr 17, 2025Updated 11 months ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆1,355Sep 22, 2025Updated 5 months ago
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆881Mar 21, 2025Updated 11 months ago
- A modern multiple reverse shell sessions manager written in go☆1,636Updated this week
- pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and …☆1,932Sep 23, 2022Updated 3 years ago
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆1,269Dec 9, 2025Updated 3 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,112Jun 10, 2024Updated last year
- The Network Execution Tool☆5,339Updated this week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆19,484Updated this week
- A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting☆825Nov 15, 2025Updated 4 months ago
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,490Dec 21, 2025Updated 2 months ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,648Aug 28, 2025Updated 6 months ago
- Trying to tame the three-headed dog.☆4,920Nov 14, 2025Updated 4 months ago
- Tool for Active Directory Certificate Services enumeration and abuse☆3,427Feb 28, 2026Updated 2 weeks ago
- ConPtyShell - Fully Interactive Reverse Shell for Windows☆1,195Jan 20, 2023Updated 3 years ago
- A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.☆2,093Nov 20, 2025Updated 4 months ago
- A fast TCP/UDP tunnel over HTTP☆15,761Mar 9, 2026Updated last week
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆1,476Oct 8, 2022Updated 3 years ago
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock☆7,113Mar 12, 2024Updated 2 years ago
- ☆1,674Apr 14, 2025Updated 11 months ago
- Connect like there is no firewall. Securely.☆1,833Mar 7, 2026Updated last week