mattiasgeniar / php-exploit-scripts
A collection of PHP exploit scripts, found when investigating hacked servers. These are stored for educational purposes and to test fuzzers and vulnerability scanners. Feel free to contribute.
☆838Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for php-exploit-scripts
- A collection of PHP backdoors. For educational or testing purposes only.☆2,206Updated 8 months ago
- A Ruby framework designed to aid in the penetration testing of WordPress systems.☆1,018Updated 4 years ago
- Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!☆1,886Updated 3 years ago
- Advanced Web Shell☆573Updated 7 years ago
- Detect potentially malicious PHP files☆1,470Updated last year
- Web Shell Detector – is a php script that helps you find and identify php/cgi(perl)/asp/aspx shells. Web Shell Detector has a “web shells…☆814Updated 9 years ago
- Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor☆2,224Updated 6 months ago
- Wordpress Attack Suite☆939Updated 3 years ago
- Plecost - Wordpress finger printer Tool☆338Updated last year
- PHP Secure Configuration Checker☆814Updated 7 months ago
- Nano is a family of PHP web shells which are code golfed for stealth.☆435Updated 4 years ago
- small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns☆319Updated 7 months ago
- A black box, Ruby powered, Joomla vulnerability scanner☆272Updated 6 years ago
- Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield☆449Updated 2 years ago
- Miscellaneous exploit code☆1,523Updated last year
- Free web-application vulnerability and version scanner☆563Updated 3 months ago
- Clone of svn repository of http://insecurety.net/projects/web-malware/ project☆459Updated 8 years ago
- PHPMailer < 5.2.18 Remote Code Execution exploit and vulnerable container☆404Updated last year
- PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based …☆793Updated 9 years ago
- Various webshells. We accept pull requests for additions to this collection.☆892Updated last year
- Wordpress Vulnerability Scanner☆162Updated last year
- Bypassing disabled exec functions in PHP (c) CRLF☆400Updated 4 years ago
- CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues☆965Updated 3 years ago
- phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code☆711Updated last year
- Your interpreter isn’t safe anymore — The PHP module backdoor☆219Updated 5 years ago
- Chromebackdoor is a PoC of pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malic…☆507Updated 7 years ago
- Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)☆579Updated 3 years ago
- PHP Webshell with handy features☆2,404Updated last year