Maskhe/webshell_bypass_research external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Maskhe/webshell_bypass_research

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Maskhe/webshell_bypass_research)

Close

Maskhe / webshell_bypass_researchView on GitHubMore

• External links
• Readme badge

自己零零散散研究以及收集的一些免杀技巧，以便为后续查阅，拓宽思路

☆15Dec 11, 2019Updated 6 years ago

Alternatives and similar repositories for webshell_bypass_research

Users that are interested in webshell_bypass_research are comparing it to the libraries listed below

• 0x2E / sf

  View on GitHub
  sf is an efficient subdomain brute-forcing tool
  ☆16Oct 13, 2023Updated 2 years ago
• z1Ro0 / tomcat_nofile_webshell

  View on GitHub
  Tomcat基于动态注册Filter的无文件Webshell
  ☆26Jun 20, 2020Updated 5 years ago
• LangziFun / PayloadsAllTheThings

  View on GitHub
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆11Nov 16, 2019Updated 6 years ago
• LDAx2012 / mimikatz

  View on GitHub
  A little tool to play with Windows security
  ☆48Jan 4, 2026Updated 2 months ago
• apkc / CVE-2024-26229-BOF

  View on GitHub
  BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
  ☆27Jun 13, 2024Updated last year
• idiotc4t / RandomInjector

  View on GitHub
  This is a random process injector, and more injection techniques will be added in the future.
  ☆13Jul 17, 2020Updated 5 years ago
• SiJiDo / JAVA-Serialize-vuln

  View on GitHub
  java反序列化漏洞笔记
  ☆24Apr 6, 2019Updated 6 years ago
• Jumbo-WJB / sqlmap_auto_proxy

  View on GitHub
  sqlmap_auto_proxy
  ☆15Nov 6, 2019Updated 6 years ago
• timwhitez / find-subdomain-by-xray

  View on GitHub
  利用xray高级版批量收集子域名
  ☆18Feb 19, 2020Updated 6 years ago
• Enul1ttle / Tools

  View on GitHub
  百度url采集，TeamViewer密码获取，社会工程字典生成去重，lcx 等小工具
  ☆32May 26, 2019Updated 6 years ago
• naozibuhao / Apache-Durid-RCE

  View on GitHub
  ☆14Feb 2, 2021Updated 5 years ago
• zhaoyumi / jolokia_Realm_JNDI_RCE_Check

  View on GitHub
  jolokia Realm JNDI RCE 漏洞检测，并获取明文密码
  ☆18May 29, 2023Updated 2 years ago
• likekabin / CVE-2018-0802_CVE-2017-11882

  View on GitHub
  ☆11Jan 16, 2018Updated 8 years ago
• Iansus / SilentLsassDump

  View on GitHub
  VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump
  ☆24Jul 6, 2023Updated 2 years ago
• timwhitez / CLR-RWX

  View on GitHub
  Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间
  ☆22Sep 28, 2022Updated 3 years ago
• badboycxcc / Beacon

  View on GitHub
  重构Beacon
  ☆15Aug 25, 2024Updated last year
• bunk3r / ora-exec-cmd

  View on GitHub
  Run remote system commands from Oracle connection - oracle exec command perl
  ☆12Jun 6, 2015Updated 10 years ago
• Mr-xn / tongda_OfficeTask_RCE

  View on GitHub
  通达OA OfficeTask udp 2397 端口远程代码执行RCE检测工具
  ☆21Jun 13, 2025Updated 9 months ago
• PortSwigger / pyburp

  View on GitHub
  BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the …
  ☆15Jan 12, 2026Updated 2 months ago
• sv3nbeast / X-AutoXray

  View on GitHub
  AutoScan 有多个目标时，多线程调用xray+rad进行自动扫描
  ☆87Jul 12, 2022Updated 3 years ago
• mabangde / Bloodhound_data_parse

  View on GitHub
  Bloodhound 数据解析工具
  ☆22Jun 10, 2025Updated 9 months ago
• 0x4E0x650x6F / pwn4jshell

  View on GitHub
  Java Web shell project
  ☆12Oct 22, 2021Updated 4 years ago
• susuya233 / fscan-bypass

  View on GitHub
  fscan 的魔改版
  ☆13Jul 8, 2024Updated last year
• Neo-Maoku / MultiTshProxy

  View on GitHub
  tsh多终端代理通信
  ☆19Feb 26, 2025Updated last year
• lemono0 / ysoserial-su18

  View on GitHub
  此项目为su18大佬的仓库镜像，如有问题可发issuse删库
  ☆14May 4, 2023Updated 2 years ago
• evilashz / Visual-Studio-BOF-template

  View on GitHub
  more conveniently Visual-Studio-BOF-template
  ☆75Sep 12, 2023Updated 2 years ago
• 0xC01DF00D / Mimigoatz

  View on GitHub
  Alternative Mimikatz LSASS DUMPER
  ☆14Apr 2, 2020Updated 5 years ago
• Chestnuts4 / POC

  View on GitHub
  ☆16Jun 1, 2024Updated last year
• susuya233 / G-DeZender

  View on GitHub
  G-DeZender的限制解除版本，可以批量解密php文件。
  ☆11Oct 22, 2024Updated last year
• GitlXl / fgzz

  View on GitHub
  提供burpsuite扫描规则的项目，后期会有持续更新。
  ☆11Feb 12, 2022Updated 4 years ago
• gcker / Phishing-Sender

  View on GitHub
  Phishing sender是一款针对钓鱼邮件应急演练所编写的小脚本，实际上是封装了swaks，让人们做演练的时候更加方便快捷。
  ☆16Jun 8, 2022Updated 3 years ago
• redrays-io / CVE-2025-31324

  View on GitHub
  CVE-2025-31324, SAP Exploit
  ☆25Apr 28, 2025Updated 10 months ago
• jorgectf / jdk4QL

  View on GitHub
  Java JDK 8-18 CodeQL databases
  ☆17Jun 2, 2024Updated last year
• Echocipher / Resource-list

  View on GitHub
  “网址”传输助手，记载一下平时用到好的在线网址。
  ☆96Apr 10, 2020Updated 5 years ago
• GeekOnlineCode / POC

  View on GitHub
  ☆23Jan 18, 2018Updated 8 years ago
• TideSec / Papers

  View on GitHub
  近几年的一些文章和工具
  ☆231Aug 10, 2022Updated 3 years ago
• safe6Sec / ShellManageTool

  View on GitHub
  在网传的哥斯拉&冰蝎源码基础上加了一点注释
  ☆258May 16, 2022Updated 3 years ago
• su18 / JSP-Webshells

  View on GitHub
  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
  ☆15Sep 22, 2021Updated 4 years ago
• metaStor / Bypass_Go

  View on GitHub
  参考CS的Bypass插件+分离免杀思想改造
  ☆32Jan 13, 2021Updated 5 years ago