Alternatives and similar repositories for webshells

Users that are interested in webshells are comparing it to the libraries listed below

• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆63Updated 6 years ago
• rekter0 / exploits
  ☆51Updated 3 years ago
• wildkindcc / CVE-2018-9276
  CVE-2018-9276 PRTG < 18.2.39 Authenticated Command Injection (Reverse Shell)
  ☆36Updated 4 years ago
• wetw0rk / Exploit-Development
  CVE-2020-8012, CVE-2016-10709, CVE-2017-17099, CVE-2017-18047, CVE-2019-1003000, CVE-2018-1999002
  ☆66Updated 3 months ago
• vah13 / SAP_exploit
  Here you can get full exploit for SAP NetWeaver AS JAVA
  ☆76Updated 7 years ago
• nccgroup / VulnerableDotNetHTTPRemoting
  Example Vulnerable .NET HTTP Remoting
  ☆84Updated 6 years ago
• jas502n / CVE-2019-12384
  Jackson Rce For CVE-2019-12384
  ☆99Updated 5 years ago
• t0kx / exploit-CVE-2016-9920
  Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container
  ☆47Updated last year
• kmahyyg / mremoteng-decrypt
  mRemoteNG Config File Decrypt
  ☆83Updated 2 years ago
• timip / exploit
  Just some exploits :P
  ☆46Updated 4 years ago
• basicScandal / WinHackingBin
  Collection of Windows Hacking Binaries
  ☆50Updated 9 years ago
• esabear / iis_tilde_enum
  Takes a URL and checks the system for the tilde enum vuln and then find the files.
  ☆23Updated 5 years ago
• xpn / Powershell-PostExploitation
  Scripts created to help with post exploitation of a Windows host
  ☆97Updated 4 years ago
• mpgn / CVE-2019-7609
  RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer
  ☆55Updated 5 years ago
• dim0x69 / dns-exe-persistance
  ☆45Updated 8 years ago
• pimps / CVE-2019-2725
  WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit
  ☆47Updated 5 years ago
• phackt / Invoke-Recon
  "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…
  ☆81Updated 3 years ago
• PortSwigger / reissue-request-scripter
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆29Updated 3 years ago
• Yt1g3r / CVE-2020-0688_EXP
  CVE-2020-0688_EXP Auto trigger payload & encrypt method
  ☆145Updated 5 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆117Updated 9 years ago
• cheetz / hidemyps
  ☆42Updated 7 years ago
• secgroundzero / CS-Aggressor-Scripts
  Aggressor Scripts for Cobalt Strike
  ☆76Updated last year
• PenTestical / CVE-2020-9484
  ☆34Updated 3 years ago
• mikaelkall / Exploits
  Exploits developed by Mikael Kall
  ☆47Updated last year
• 73696e65 / windows-exploits
  Used for the osce exam preparation
  ☆74Updated 9 years ago
• Re4son / Chimichurri
  Some minor changes to Chimichurri to get it to compile on modern machines
  ☆44Updated 9 years ago
• k8gege / CVE-2019-0604
  cve-2019-0604 SharePoint RCE exploit
  ☆100Updated 5 years ago
• bao7uo / bmc_bladelogic
  BMC Bladelogic RSCD exploits including remote code execution - CVE-2016-1542, CVE-2016-1543, CVE-2016-5063
  ☆20Updated 5 years ago
• darkr4y / SharpOffensiveShell
  A sort of simple shell which support multiple protocols.
  ☆99Updated 5 years ago
• amriunix / ona-rce
  OpenNetAdmin 18.1.1 - Remote Code Execution
  ☆30Updated 5 years ago