Maskhe/webshell_bypass_research external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Maskhe/webshell_bypass_research

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Maskhe/webshell_bypass_research)

Close

Maskhe / webshell_bypass_researchView on GitHubMore

• External links
• Readme badge

自己零零散散研究以及收集的一些免杀技巧，以便为后续查阅，拓宽思路

☆15Dec 11, 2019Updated 6 years ago

Alternatives and similar repositories for webshell_bypass_research

Users that are interested in webshell_bypass_research are comparing it to the libraries listed below

• idiotc4t / RandomInjector

  View on GitHub
  This is a random process injector, and more injection techniques will be added in the future.
  ☆13Jul 17, 2020Updated 5 years ago
• 0x2E / sf

  View on GitHub
  sf is an efficient subdomain brute-forcing tool
  ☆16Oct 13, 2023Updated 2 years ago
• LangziFun / PayloadsAllTheThings

  View on GitHub
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆11Nov 16, 2019Updated 6 years ago
• badboycxcc / Beacon

  View on GitHub
  重构Beacon
  ☆15Aug 25, 2024Updated last year
• naozibuhao / Apache-Durid-RCE

  View on GitHub
  ☆14Feb 2, 2021Updated 5 years ago
• Jumbo-WJB / sqlmap_auto_proxy

  View on GitHub
  sqlmap_auto_proxy
  ☆15Nov 6, 2019Updated 6 years ago
• zhaoyumi / jolokia_Realm_JNDI_RCE_Check

  View on GitHub
  jolokia Realm JNDI RCE 漏洞检测，并获取明文密码
  ☆18May 29, 2023Updated 2 years ago
• timwhitez / CLR-RWX

  View on GitHub
  Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间
  ☆22Sep 28, 2022Updated 3 years ago
• mabangde / Bloodhound_data_parse

  View on GitHub
  Bloodhound 数据解析工具
  ☆22Jun 10, 2025Updated 8 months ago
• LDAx2012 / mimikatz

  View on GitHub
  A little tool to play with Windows security
  ☆45Jan 4, 2026Updated last month
• timwhitez / find-subdomain-by-xray

  View on GitHub
  利用xray高级版批量收集子域名
  ☆18Feb 19, 2020Updated 6 years ago
• z1Ro0 / tomcat_nofile_webshell

  View on GitHub
  Tomcat基于动态注册Filter的无文件Webshell
  ☆26Jun 20, 2020Updated 5 years ago
• SiJiDo / JAVA-Serialize-vuln

  View on GitHub
  java反序列化漏洞笔记
  ☆23Apr 6, 2019Updated 6 years ago
• apkc / CVE-2024-26229-BOF

  View on GitHub
  BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
  ☆27Jun 13, 2024Updated last year
• sv3nbeast / X-AutoXray

  View on GitHub
  AutoScan 有多个目标时，多线程调用xray+rad进行自动扫描
  ☆87Jul 12, 2022Updated 3 years ago
• Echocipher / Resource-list

  View on GitHub
  “网址”传输助手，记载一下平时用到好的在线网址。
  ☆96Apr 10, 2020Updated 5 years ago
• Aquilao / GetChromeData

  View on GitHub
  Windows 下获取 Chrome、Chromium Edge 浏览器的账号密码、Cookie、历史记录、下载记录、书签等信息
  ☆26Dec 7, 2021Updated 4 years ago
• ImCoriander / Bypass_Defender

  View on GitHub
  绕过defender的完整项目
  ☆37Apr 5, 2024Updated last year
• JrDw0 / sqlmap_tamper

  View on GitHub
  bypass waf
  ☆27Aug 26, 2018Updated 7 years ago
• Enul1ttle / Tools

  View on GitHub
  百度url采集，TeamViewer密码获取，社会工程字典生成去重，lcx 等小工具
  ☆32May 26, 2019Updated 6 years ago
• xiecat / sylas

  View on GitHub
  根据多个不同地区进行聚合查询以获取更多 fofa 数据
  ☆28Jul 24, 2023Updated 2 years ago
• evilashz / Visual-Studio-BOF-template

  View on GitHub
  more conveniently Visual-Studio-BOF-template
  ☆75Sep 12, 2023Updated 2 years ago
• Xc1Ym / cyberspace_map_API

  View on GitHub
  Use Fofa、shodan、zoomeye、360quake to collect information(e.g:domain,IP,CMS,OS)同时调用Fofa、shodan、zoomeye、360quake四个网络空间测绘API完成红队信息收集
  ☆71Nov 13, 2023Updated 2 years ago
• YDHCUI / TcpTunnel

  View on GitHub
  tcp端口复用程序
  ☆72Aug 7, 2022Updated 3 years ago
• NYU-Tandon-Digital-Learning / CLI-Cheat-Sheet

  View on GitHub
  A command line cheat sheet. (CLI is not a scary place!)
  ☆13Apr 17, 2018Updated 7 years ago
• r00tSe7en / ShellBruter

  View on GitHub
  WebShell高效爆破字典生成
  ☆28Mar 30, 2020Updated 5 years ago
• j3ers3 / Searpy

  View on GitHub
  🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找
  ☆213May 17, 2023Updated 2 years ago
• badboycxcc / Plugx

  View on GitHub
  Plugx 开源情报集合
  ☆23Dec 10, 2024Updated last year
• Fool-Alex / Virus-Learning

  View on GitHub
  感染PE文件的病毒学习过程
  ☆32Jan 14, 2021Updated 5 years ago
• TideSec / Papers

  View on GitHub
  近几年的一些文章和工具
  ☆229Aug 10, 2022Updated 3 years ago
• lotapp / ADSec-and-RedTeam

  View on GitHub
  主要放一些关于域内安全和红队攻防的学习和研究记录
  ☆36Jun 4, 2019Updated 6 years ago
• fenalik / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆15Oct 31, 2022Updated 3 years ago
• JoranSlingerland / CVE-2021-36934

  View on GitHub
  Fix for the CVE-2021-36934
  ☆10Oct 15, 2021Updated 4 years ago
• yyhuni / shiroMemshell

  View on GitHub
  利用shiro反序列化注入冰蝎内存马
  ☆37Dec 19, 2021Updated 4 years ago
• xiaopan233 / panSubdomainScanner

  View on GitHub
  子域名收集和整理脚本、配合Oneforall食用更佳
  ☆11May 10, 2020Updated 5 years ago
• luyuhuang / subsocks

  View on GitHub
  A Socks5 proxy that encapsulates Socks5 in other security protocols
  ☆90Dec 19, 2023Updated 2 years ago
• metaStor / Bypass_Go

  View on GitHub
  参考CS的Bypass插件+分离免杀思想改造
  ☆32Jan 13, 2021Updated 5 years ago
• TheKingOfDuck / domain_screen

  View on GitHub
  站点批量截图
  ☆147Jan 13, 2022Updated 4 years ago
• Maikefee / BurpAutoProxySwitcherPlugins_Maikefee

  View on GitHub
  红队必备，场景：在爆破批量封ip的情况下，爬取socks5代理在bp进行渗透测试。说明：可设置一个请求换一次socks代理ip，这样就绕过了封ip的情况。
  ☆39Jun 28, 2024Updated last year