xl7dev / WebShell

Related projects: ⓘ

• sensepost / reGeorg
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆2,994Updated 3 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,520Updated 3 years ago
• AonCyberLabs / Windows-Exploit-Suggester
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆3,938Updated last year
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,739Updated 4 months ago
• epinna / weevely3
  Weaponized web shell
  ☆3,160Updated 4 months ago
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆2,806Updated last year
• SecWiki / windows-kernel-exploits
  windows-kernel-exploits Windows平台提权漏洞集合
  ☆8,044Updated 3 years ago
• zer0yu / Awesome-CobaltStrike
  List of Awesome CobaltStrike Resources
  ☆3,971Updated 11 months ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,811Updated 4 years ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,176Updated last month
• worawit / MS17-010
  MS17-010
  ☆2,130Updated last year
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,636Updated 2 years ago
• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,407Updated 4 years ago
• knownsec / pocsuite3
  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
  ☆3,619Updated 4 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆2,937Updated 3 months ago
• ohpe / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,385Updated 2 years ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,508Updated 4 years ago
• XiphosResearch / exploits
  Miscellaneous exploit code
  ☆1,509Updated 11 months ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,661Updated 2 years ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,335Updated last year
• AlessandroZ / BeRoot
  Privilege Escalation Project - Windows / Linux / Mac
  ☆2,421Updated 2 years ago
• mm0r1 / exploits
  Pwn stuff.
  ☆1,754Updated 2 years ago
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,293Updated 5 months ago
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,866Updated this week
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,836Updated last year
• The-Z-Labs / linux-exploit-suggester
  Linux privilege escalation auditing tool
  ☆5,558Updated 7 months ago
• Dliv3 / Venom
  Venom - A Multi-hop Proxy for Penetration Testers
  ☆1,985Updated 2 years ago
• qazbnm456 / awesome-cve-poc
  ✍️ A curated list of CVE PoCs.
  ☆3,293Updated 2 years ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,021Updated last year
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,513Updated this week