Xh4H/Web-Shells external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Xh4H/Web-Shells

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Xh4H/Web-Shells)

Close

Xh4H / Web-ShellsView on GitHubMore

• External links
• Readme badge

Some of the best web shells that you might need

☆45Mar 21, 2019Updated 7 years ago

Alternatives and similar repositories for Web-Shells

Users that are interested in Web-Shells are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• TheBinitGhimire / Web-Shells

  View on GitHub
  Some of the best web shells that you might need!
  ☆348Jun 30, 2023Updated 2 years ago
• an0nlk / Nosql-MongoDB-injection-username-password-enumeration

  View on GitHub
  Using this script, you can enumerate Usernames and passwords of Nosql(mongodb) injecion vulnerable web applications.
  ☆173Nov 29, 2019Updated 6 years ago
• NyaMeeEain / Applications-Security

  View on GitHub
  ☆18Dec 8, 2022Updated 3 years ago
• citrix / ioc-scanner-CVE-2019-19781

  View on GitHub
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆58Mar 25, 2020Updated 6 years ago
• Hackplayers / PsCabesha-tools

  View on GitHub
  Powershell crazy and sometimes diabolic scripts
  ☆161Aug 26, 2020Updated 5 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• saucer-man / dictionary

  View on GitHub
  Own collection dictionary
  ☆14Apr 20, 2020Updated 5 years ago
• peanuthacker92 / oscp-command-filtering-tool

  View on GitHub
  ☆97Feb 18, 2025Updated last year
• Arken2 / Everything-OSCP

  View on GitHub
  Custom checklists, cheatsheets, links, and scripts
  ☆128Jul 19, 2019Updated 6 years ago
• Re4son / AT-TFTP_Long_Filename

  View on GitHub
  Exploits a stack buffer overflow in AT-TFTP v1.9, by sending a request (get/write) for an overly long file name.
  ☆11Jun 22, 2015Updated 10 years ago
• trickster0 / Enyx

  View on GitHub
  Enyx SNMP IPv6 Enumeration Tool
  ☆106Jan 20, 2023Updated 3 years ago
• saghul / lxd-alpine-builder

  View on GitHub
  Build Alpine Linux images for LXD
  ☆204Jul 10, 2025Updated 9 months ago
• hussein98d / LFI-files

  View on GitHub
  Wordlist to bruteforce for LFI
  ☆128Oct 6, 2019Updated 6 years ago
• rsherstnev / LinuxConfigs

  View on GitHub
  My linux config files
  ☆10Apr 4, 2026Updated last week
• TeamUnderdawgs / BinaryExploitation-For-CTFs

  View on GitHub
  All things Binary Exploitation, Memory, Assembly and Corruptions.
  ☆10Sep 25, 2020Updated 5 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• trevorsaudi / Zero-Import-Malware

  View on GitHub
  Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetM…
  ☆40Oct 26, 2023Updated 2 years ago
• idchoppers / redTeaming

  View on GitHub
  Assorted scripts I made for Red Teaming / Pen Testing
  ☆14Jun 15, 2024Updated last year
• BustedSec / webshell

  View on GitHub
  dirt simple jsp webshell
  ☆32Sep 17, 2016Updated 9 years ago
• ret2jazzy / Struts-Apache-ExploitPack

  View on GitHub
  These are just some script which you can use to detect and exploit the Apache Struts Vulnerability (CVE-2017-5638)
  ☆16Mar 12, 2017Updated 9 years ago
• andpalmier / MLWithPhishing

  View on GitHub
  Machine Learning basics with phishing dataset
  ☆11Apr 19, 2021Updated 4 years ago
• musyoka101 / Bludit-CMS-Version-3.9.2-Brute-Force-Protection-Bypass-script

  View on GitHub
  ☆12Sep 6, 2020Updated 5 years ago
• cayu / Offensive-Security-Cayuqueo

  View on GitHub
  Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited
  ☆16Apr 23, 2022Updated 3 years ago
• sagishahar / scripts

  View on GitHub
  Miscellaneous scripts and tools
  ☆15Oct 17, 2019Updated 6 years ago
• ftrain / code-commonplace

  View on GitHub
  An easily forkable commonplace book of interesting, VERY well-annoted code in any language. Take it and add your own.
  ☆41Jan 28, 2014Updated 12 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• hexrom / CookieHeist

  View on GitHub
  PHP Cookie Stealing Scripts for use in XSS
  ☆28Jul 26, 2018Updated 7 years ago
• kost / rdpcmd-ruby

  View on GitHub
  Run commands over RDP on massive number of hosts
  ☆11Nov 26, 2018Updated 7 years ago
• CoenGoedegebure / scripts

  View on GitHub
  ☆16Dec 2, 2019Updated 6 years ago
• rbarrois / yubico-yubiserve

  View on GitHub
  Standalone Yubico validation server
  ☆12Feb 20, 2012Updated 14 years ago
• OmerYa / ROP-From-Zero-to-Nation-State-In-25-Minutes

  View on GitHub
  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
  ☆16Sep 4, 2020Updated 5 years ago
• SolomonSklash / htbenum

  View on GitHub
  A Linux enumeration script for Hack The Box
  ☆191Nov 27, 2019Updated 6 years ago
• acc3ssp0int-official / buffer-overflow-skeleton-scripts

  View on GitHub
  buffer overflow skeleton scripts, can be used for any TCP based socket flows.
  ☆10Oct 14, 2020Updated 5 years ago
• decoder-it / BadBackupOperator

  View on GitHub
  ☆37Feb 12, 2018Updated 8 years ago
• infosec-au / fuzzdb

  View on GitHub
  Automatically exported from code.google.com/p/fuzzdb
  ☆66May 20, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Dhayalanb / windows-php-reverse-shell

  View on GitHub
  Simple php reverse shell implemented using binary .
  ☆442Nov 17, 2023Updated 2 years ago
• tbhaxor / pt-jsfp

  View on GitHub
  Explanation of All the Payloads Used in Pentester Academy's JS for Pentester Course
  ☆16Dec 27, 2020Updated 5 years ago
• rtandr01d / zerologon

  View on GitHub
  Scan for and exploit the zerologon vulnerability.
  ☆10Sep 15, 2020Updated 5 years ago
• RandomRobbieBF / phpunit-brute

  View on GitHub
  Tool to try multiple paths for PHPunit RCE CVE-2017-9841
  ☆29Oct 18, 2021Updated 4 years ago
• justinsteven / dostackbufferoverflowgood

  View on GitHub
  ☆1,395Apr 25, 2021Updated 4 years ago
• roughiz / Symlink-Directory-Traversal-smb-manually

  View on GitHub
  SAMBA Symlink Directory Traversal Manual Exploitation
  ☆32Dec 23, 2019Updated 6 years ago
• w1ld3r / SMBGhost_Scanner

  View on GitHub
  Advanced scanner for CVE-2020-0796 - SMBv3 RCE
  ☆15May 22, 2023Updated 2 years ago