HeNrY4396/MatouWebshell

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HeNrY4396/MatouWebshell)

HeNrY4396 / MatouWebshell

MatouWebshell 是一套基于 Vue 3 + Python 的 Webshell 利用平台。内置 Webshell 生成与连接能力，支持 Linux 目标下的 PHP、JSP、JSPX，并可自定义加密方式与请求/响应封装（form/json/xml/png 等），便于按业务流量形态进行伪装与兼容。提供命令终端、文件管理（大文件分块上传下载、编辑、压缩解压、权限/时间属性修改）、数据库管理等常用模块，并集成内网穿透（SOCKS 代理、端口映射、反向 DMZ/JSP）及 JSP 内存马加载/卸载与组件信息查询。发布为本地二进制，建议在 glibc≥2.38 的新发行版系统运行

☆83

Alternatives and similar repositories for MatouWebshell

Users that are interested in MatouWebshell are comparing it to the libraries listed below

Sorting:

Z0fSec / Z0fAPICollect
View on GitHub
一款可以高度自定义的 API 信息收集与记录 Burp扩展套件
☆11Dec 1, 2024Updated last year
cwkiller / xxe-smb-server
View on GitHub
在xxe中使用smb外带多行内容
☆101Nov 9, 2025Updated 3 months ago
darrenmartyn / zimbra-slapper
View on GitHub
zimbra "zmslapd" lpe
☆23Oct 27, 2021Updated 4 years ago
ttstormxx / lineadd
View on GitHub
lineadd 渗透测试字典管理工具, 让字典管理生活轻松一点。Penetration test dictionary management tool, make dictionary management life a little easier.
☆27Aug 19, 2023Updated 2 years ago
wreck1t / Responder
View on GitHub
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
☆10Mar 17, 2020Updated 5 years ago
mbadanoiu / CVE-2024-37081
View on GitHub
CVE-2024-37081: Multiple Local Privilege Escalation in VMware vCenter Server
☆10Jul 6, 2024Updated last year
mhtsec / Docker-Registry-exp
View on GitHub
一款功能强大的Docker Registry 5000端口未授权浏览、下载和安全测试工具，集成了镜像管理、认证爆破、敏感信息搜索等多项实用功能。
☆35Nov 6, 2025Updated 3 months ago
P1cker / DIY-RT_Tools
View on GitHub
Sharing of self-developed red team tools...记得freebuf关注我P1cker
☆11Jan 12, 2021Updated 5 years ago
Tas9er / RexLeo
View on GitHub
RexLeo / ByPassDownLoadFile / Code By:Tas9er / A.E.0.S Security Team
☆27May 8, 2025Updated 9 months ago
0x7556 / wolfshell
View on GitHub
金刚狼：首款支持AI渗透的WebShell，首款支持多层内网级联的ASPX、ASHX高级WebShell管理工具，AES加密通信，无需代理，内存加载渗透工具，无文件落地隐蔽渗透目标，动态代码执行，ShellCode加载(Metasploit/Cobalt Strike)，反…
☆162Feb 10, 2026Updated 2 weeks ago
MinggongKs / jeecg
View on GitHub
JeecgBoot综合漏洞利用工具版本更新
☆17Feb 18, 2025Updated last year
safe1024 / apollofish
View on GitHub
在数字化浪潮下，钓鱼攻击已成为企业网络安全的主要威胁之一。仿冒网页、恶意邮件等钓鱼手段层出不穷，一旦员工不慎中招，可能导致企业核心数据泄露、系统瘫痪、财产损失等严重后果。在此背景下，阿波罗安全风险演练平台ApolloFish)应运而生，平台以“实战演练赋能安全意识提升”为核…
☆247Feb 12, 2026Updated 2 weeks ago
Jaysen13 / jaysenwxapkg
View on GitHub
自动解包微信小程序并提取敏感信息和api接口
☆184Jan 10, 2026Updated last month
xsshim / GzWebsocket
View on GitHub
哥斯拉webshell管理工具的插件，用于连接websocket型webshell
☆176Apr 17, 2024Updated last year
Scorcsoft / forBy
View on GitHub
一款图形化的 .DS_Store文件泄露、.git目录泄露、.svn目录泄露漏洞利用工具。
☆95Mar 26, 2025Updated 11 months ago
avalon1610 / GetPassword
View on GitHub
☆10Apr 11, 2013Updated 12 years ago
tianlusec / TL-NodeJsShell
View on GitHub
TL-NodeJsShell 是一个为安全专业人员和渗透测试人员设计的综合性 WebShell 管理平台。它提供了一个现代化的 Web 界面，用于管理基于 Node.js 的 Shell，具有内存马注入、命令执行、文件管理和代理支持等高级功能。
☆80Dec 12, 2025Updated 2 months ago
90N45-d3v / BlueBunny
View on GitHub
BLE based C2 for Hak5's Bash Bunny
☆19Oct 31, 2023Updated 2 years ago
darkfiv / ReactExploitGUI
View on GitHub
☆116Dec 16, 2025Updated 2 months ago
W01fh4cker / weblogic-batch-memshell-kit
View on GitHub
weblogic批量打入内存马，electron+vue3+springboot实现。
☆54Mar 13, 2024Updated last year
woodpecker-appstore / druid-decrypter
View on GitHub
druid数据库密码解密
☆37Apr 7, 2023Updated 2 years ago
onewinner / MPET
View on GitHub
MPET (Multi-Protocol Exploitation Toolkit) 是一款专业的多协议安全测试工具，基于 Wails 框架构建的现代化桌面应用。它提供了对 25+ 种主流服务协议的连接测试、未授权访问检测、弱口令检测和漏洞利用能力，是安全研究人员和渗透测试…
☆102Jan 22, 2026Updated last month
0x7eTeam / 0x7eTeamTools
View on GitHub
javafx练习,JS接口提取,漏洞检测
☆237Jan 24, 2024Updated 2 years ago
0x7eTeam / Unauthorized_Application_Check
View on GitHub
Unauthorized_Application_Check 未授权应用漏洞批量检查，包含redis,Hadoop,docker,CouchDB,ftp,zookeeper,elasticsearch,memcached,mongodb,rsync_access,mysql…
☆15Feb 1, 2022Updated 4 years ago
richardzhangcmplx / Dubbo-deserialization
View on GitHub
[CVE-2020-1948] Apache Dubbo Provider default deserialization cause RCE
☆18Mar 17, 2025Updated 11 months ago
wangfly-me / Apache_Penetration_Tool
View on GitHub
CVE-2021-41773&CVE-2021-42013图形化漏洞检测利用工具
☆15May 22, 2023Updated 2 years ago
silience / sql
View on GitHub
☆13Apr 11, 2018Updated 7 years ago
MyKings / Crack-Tools
View on GitHub
web form crack
☆12May 10, 2016Updated 9 years ago
webraybtl / zentaopms_poc
View on GitHub
禅道相关poc
☆172Jun 20, 2024Updated last year
T3nk0 / Upload_Auto_Fuzz
View on GitHub
一个用于测试文件上传功能安全性的 Burp Suite 插件。通过 Intruder 模块自动生成各类绕过 payload，覆盖常见的文件上传限制场景。共1000+条payload
☆566Dec 24, 2025Updated 2 months ago
scheatkode / presshell
View on GitHub
🚪 Quick & dirty Wordpress Command Execution Shell
☆66Jan 24, 2022Updated 4 years ago
W01fh4cker / CVE-2020-0688-GUI
View on GitHub
GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)
☆16May 9, 2024Updated last year
qi4L / QVD-2023-13065
View on GitHub
Nacos JRaft Hessian 反序列化 RCE EXP
☆65Jun 13, 2023Updated 2 years ago
chroblert / Flash-Pop2
View on GitHub
Flash-Pop升级版
☆63Mar 9, 2023Updated 2 years ago
Ryze-T / Bypass_WindowsDefender
View on GitHub
Bypass Windows Defender
☆62Jun 16, 2022Updated 3 years ago
evilashz / PIGADVulnScanner
View on GitHub
检测域内常见一把梭漏洞，包括：NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare
☆79Oct 23, 2023Updated 2 years ago
Bbdolt / SeeMore
View on GitHub
漏洞挖掘小工具，用于发现页面中的隐藏可点击元素
☆85Jun 4, 2025Updated 8 months ago
veo / nginx_shell
View on GitHub
nginx WebShell/内存马，更优雅的nignx backdoor
☆325Jan 4, 2024Updated 2 years ago
G0mini / PyBy2
View on GitHub
持续对一些工具进行修改成自动化工具。使其更简单,更方便.
☆100Feb 21, 2025Updated last year