This is a proof-of-concept of malicious software running inside of ModSecurity WAF.
☆34Jul 24, 2025Updated 9 months ago
Alternatives and similar repositories for modsecurity-backdoor
Users that are interested in modsecurity-backdoor are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated 11 months ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- ☆29May 16, 2023Updated 2 years ago
- Telegram scraper for Maltego, allows from an Alias entity to find all forwarded accounts☆11Apr 25, 2023Updated 3 years ago
- Disable PPL via custom driver and dump lsass☆15Mar 13, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Active Directory monitoring☆13Aug 16, 2023Updated 2 years ago
- Grab unsaved Notepad contents with a Beacon Object File☆11Jun 19, 2022Updated 3 years ago
- A LAPS dumper written using the impacket library.☆32May 22, 2023Updated 2 years ago
- x86_64 LKM linux rootkit☆16Jul 1, 2023Updated 2 years ago
- A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow☆17Sep 10, 2024Updated last year
- Fork of ligolo-ng with exec and service capability☆17Oct 30, 2023Updated 2 years ago
- A SOCKS proxy for Citrix.☆97Dec 8, 2022Updated 3 years ago
- Nemo - An offensive Remote Access Tool & Post-Exploitation Framework (WIP).☆14Apr 25, 2023Updated 3 years ago
- ☆90Jun 18, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆27Sep 20, 2014Updated 11 years ago
- LockCrypt est un outil open source de chiffrement partiel conçu pour tester la sécurité des systèmes. Il utilise Fernet (cryptography) po…☆11Mar 4, 2025Updated last year
- A central place to store statically compiled tools I use when auditing a Linux based device.☆14Sep 28, 2020Updated 5 years ago
- reverse shell with tty emulation, openssl encryption and support for multiple tcp proxies☆28Apr 3, 2016Updated 10 years ago
- Telsca is an open-source tool for scraping Telegram data. Extract messages, user info, and media files, saving them in CSV or JSON format…☆12Aug 4, 2024Updated last year
- Decrypt encrypted SonicOSX firmware images☆19Feb 24, 2025Updated last year
- fully async implementation of Dirkjan's ROADTools☆34Mar 15, 2025Updated last year
- Dump Linux keyrings☆24Jul 15, 2024Updated last year
- a tools for erp penetration testing☆16Dec 26, 2019Updated 6 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- JavaScript component to parse, clean, remove formatting (unformat) numbers in strings.☆10Dec 5, 2024Updated last year
- Socks5 / Socks4 client and server library☆71Oct 29, 2025Updated 6 months ago
- Ansible playbook for a Debian-based Patroni HA PostgreSQL cluster☆20Oct 8, 2025Updated 6 months ago
- https://github.com/yeyintminthuhtut/Awesome-Red-Teaming☆17Jan 15, 2022Updated 4 years ago
- ☆16Jun 13, 2022Updated 3 years ago
- A zabbix template with pci dss related items.☆14Mar 22, 2022Updated 4 years ago
- Lookup for interesting stuff in SMB shares☆150Jun 16, 2023Updated 2 years ago
- Labs from our workshop "Demystifying the server-side".☆17May 30, 2022Updated 3 years ago
- Inf0rm3r - A Linux Info & Ssytem Enumeration Script☆12Aug 2, 2013Updated 12 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This is a python script that exploits wget when being set with a SUID bit, and overwrites the root password.☆40Mar 27, 2024Updated 2 years ago
- ☆42Jan 12, 2022Updated 4 years ago
- A shell script that mimics sudo and sends you back the password☆45Feb 2, 2023Updated 3 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆110Oct 10, 2020Updated 5 years ago
- ☆10Jun 25, 2022Updated 3 years ago
- A functional exploit for CVE-2019-18634, a BSS overflow in sudo's pwfeedback feature that allows for for privesc☆58Feb 19, 2020Updated 6 years ago
- LPE of CVE-2024-26230☆23Sep 1, 2024Updated last year