bartblaze / PHP-backdoors

Related projects: ⓘ

• JohnTroony / php-webshells
  Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!
  ☆1,872Updated 3 years ago
• mattiasgeniar / php-exploit-scripts
  A collection of PHP exploit scripts, found when investigating hacked servers. These are stored for educational purposes and to test fuzze…
  ☆831Updated 6 months ago
• s4n7h0 / xvwa
  XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
  ☆1,686Updated 4 years ago
• jvoisin / php-malware-finder
  Detect potentially malicious PHP files
  ☆1,466Updated 11 months ago
• b374k / b374k
  PHP Webshell with handy features
  ☆2,373Updated last year
• epinna / weevely3
  Weaponized web shell
  ☆3,161Updated 4 months ago
• XiphosResearch / exploits
  Miscellaneous exploit code
  ☆1,511Updated 11 months ago
• dotcppfile / DAws
  Advanced Web Shell
  ☆571Updated 7 years ago
• huntergregal / mimipenguin
  A tool to dump the login password from the current linux user
  ☆3,792Updated last year
• nikicat / web-malware-collection
  Clone of svn repository of http://insecurety.net/projects/web-malware/ project
  ☆455Updated 7 years ago
• nil0x42 / phpsploit
  Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
  ☆2,191Updated 4 months ago
• vulnersCom / getsploit
  Command line utility for searching and downloading exploits
  ☆1,712Updated 3 months ago
• psecio / iniscan
  A php.ini scanner for best security practices
  ☆1,479Updated last year
• rastating / wordpress-exploit-framework
  A Ruby framework designed to aid in the penetration testing of WordPress systems.
  ☆1,016Updated 4 years ago
• lanjelot / patator
  Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
  ☆3,541Updated 8 months ago
• foospidy / payloads
  Git All the Payloads! A collection of web attack payloads.
  ☆3,596Updated last year
• mschwager / fierce
  A DNS reconnaissance tool for locating non-contiguous IP space.
  ☆1,582Updated 3 weeks ago
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,513Updated this week
• jshaw87 / Cheatsheets
  ☆1,836Updated this week
• rapid7 / hackazon
  A modern vulnerable web app
  ☆961Updated 3 years ago
• emposha / PHP-Shell-Detector
  Web Shell Detector – is a php script that helps you find and identify php/cgi(perl)/asp/aspx shells. Web Shell Detector has a “web shells…
  ☆813Updated 8 years ago
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆878Updated 11 months ago
• InteliSecureLabs / Linux_Exploit_Suggester
  Linux Exploit Suggester; based on operating system release number
  ☆1,774Updated 10 years ago
• vesche / scanless
  online port scan scraper
  ☆1,103Updated last year
• wpscanteam / wpscan
  WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…
  ☆8,501Updated last week
• leonteale / pentestpackage
  a package of Pentest scripts I have made or commonly use
  ☆604Updated 3 weeks ago
• jtesta / ssh-mitm
  SSH man-in-the-middle tool
  ☆1,609Updated 3 years ago
• tutorial0 / WebShell
  WebShell Collect
  ☆375Updated 8 years ago
• byt3bl33d3r / gcat
  A PoC backdoor that uses Gmail as a C&C server
  ☆1,319Updated 5 years ago
• neex / phuip-fpizdam
  Exploit for CVE-2019-11043
  ☆1,788Updated 4 years ago