Alternatives and similar repositories for WebShell

Users that are interested in WebShell are comparing it to the libraries listed below

• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,596Updated 4 years ago
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,201Updated 2 years ago
• tennc / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆1,392Updated 4 years ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,034Updated last year
• JohnTroony / php-webshells
  Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!
  ☆1,918Updated 4 years ago
• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,478Updated 5 years ago
• sensepost / reGeorg
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆3,113Updated 6 months ago
• epinna / weevely3
  Weaponized web shell
  ☆3,385Updated this week
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,888Updated 5 years ago
• mm0r1 / exploits
  Pwn stuff.
  ☆1,795Updated 3 years ago
• firefart / dirtycow
  Dirty Cow exploit - CVE-2016-5195
  ☆902Updated 2 months ago
• AonCyberLabs / Windows-Exploit-Suggester
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆4,117Updated 2 years ago
• worawit / MS17-010
  MS17-010
  ☆2,214Updated 2 years ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,668Updated 10 months ago
• knownsec / pocsuite3
  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
  ☆3,778Updated 7 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,346Updated 3 weeks ago
• zer0yu / Awesome-CobaltStrike
  List of Awesome CobaltStrike Resources
  ☆4,277Updated 2 years ago
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆977Updated last year
• ohpe / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,663Updated 3 years ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,891Updated 2 weeks ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,869Updated 3 years ago
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,941Updated 2 years ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,762Updated last year
• WangYihang / Platypus
  A modern multiple reverse shell sessions manager written in go
  ☆1,614Updated 2 weeks ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,599Updated 5 months ago
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆3,219Updated last month
• Dliv3 / Venom
  Venom - A Multi-hop Proxy for Penetration Testers
  ☆2,125Updated 3 years ago
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,472Updated last year
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆2,128Updated last month
• quentinhardy / odat
  ODAT: Oracle Database Attacking Tool
  ☆1,700Updated last year