strawp / web-shellsLinks
Web shells for use in penetration testing
☆39Updated 10 years ago
Alternatives and similar repositories for web-shells
Users that are interested in web-shells are comparing it to the libraries listed below
Sorting:
- Advanced XPath Injection Tool☆34Updated 10 years ago
- a collection of payloads for common webapps☆73Updated 12 years ago
- Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.☆46Updated 8 years ago
- Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…☆67Updated last year
- Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe☆14Updated 9 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- Check privileges, settings and other information on Linux systems and suggest exploits based on kernel versions☆25Updated 7 years ago
- ☆47Updated 9 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- A collection of Nmap NSE scripts that I made.☆27Updated 12 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 11 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 8 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- Runs Responder, uploads hashes for cracking, alerts when cracked☆37Updated 9 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Provide a sort of shell-ish interface to make file directory traversal quicker and easier.☆24Updated 8 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Updated 10 years ago
- Create lists from nmap output.☆13Updated 4 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Projects and POCs☆60Updated 10 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago
- Script to automate, manage, and multithread Nikto scans.☆60Updated 5 years ago
- Collection of tools for privesc on Linux☆34Updated 11 years ago
- Subdomain brute force focused on speed and data serialization☆75Updated 2 years ago
- This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …☆22Updated 5 years ago
- Check for .net padding oracle patch☆20Updated 6 years ago