Alternatives and similar repositories for web-shells

Users that are interested in web-shells are comparing it to the libraries listed below

• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• superkojiman / rfishell
  Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.
  ☆46Updated 8 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 9 years ago
• Sw4mpf0x / Tools
  Pentesting Tools
  ☆22Updated 3 years ago
• DanMcInerney / autoresp
  Runs Responder, uploads hashes for cracking, alerts when cracked
  ☆37Updated 9 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 8 years ago
• AonCyberLabs / Nmap-Scripts
  ☆47Updated 9 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 8 years ago
• DiabloHorn / DiabloHorn
  Projects and POCs
  ☆60Updated 11 years ago
• chousensha / linux_privcheck
  Check privileges, settings and other information on Linux systems and suggest exploits based on kernel versions
  ☆25Updated 8 years ago
• SimplySecurity / simplydomain
  Subdomain brute force focused on speed and data serialization
  ☆75Updated 2 years ago
• Charliedean / PsexecSpray
  Spray SMB with hashes, Then psexec
  ☆32Updated 6 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• DanMcInerney / autorelay
  Automatically performs the SMB relay attack
  ☆73Updated 9 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• toddsiegel / spscan
  SharePoint scanner and fingerprinter based on WPScan
  ☆25Updated 11 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 9 years ago
• michenriksen / nmap-scripts
  A collection of Nmap NSE scripts that I made.
  ☆27Updated 12 years ago
• superkojiman / dirtshell
  Provide a sort of shell-ish interface to make file directory traversal quicker and easier.
  ☆24Updated 8 years ago
• incredibleindishell / LDAP-credentials-collector-backdoor-generator
  This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.
  ☆59Updated 8 years ago
• packetforger / localroot
  Collection of tools for privesc on Linux
  ☆34Updated 11 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated last year
• Ohmjones / DarkEnumeration
  Automated enumeration
  ☆30Updated 4 years ago
• commonexploits / winocphc
  Windows Offline Common Password Hash Checker
  ☆29Updated 9 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆103Updated 8 years ago
• DanMcInerney / SMB-reverse-brute
  Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords
  ☆51Updated 7 years ago
• nccgroup / ssh_user_enum
  SSH User Enumeration Script in Python Using The Timing Attack
  ☆93Updated 8 years ago
• tahmed11 / strutsy
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Updated 6 years ago
• n00py / pOSt-eX
  Post-exploitation scripts for OS X persistence and privesc
  ☆72Updated 8 years ago
• packetfocus / RubyOSINT
  Ruby based script to perform application scanning of a URL, looking for specific pages to target.
  ☆26Updated 10 years ago