Alternatives and similar repositories for WebShell

Users that are interested in WebShell are comparing it to the libraries listed below

• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,185Updated 2 years ago
• tennc / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆1,391Updated 4 years ago
• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,479Updated 5 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,593Updated 4 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,887Updated 5 years ago
• sensepost / reGeorg
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆3,111Updated 6 months ago
• worawit / MS17-010
  MS17-010
  ☆2,204Updated 2 years ago
• mm0r1 / exploits
  Pwn stuff.
  ☆1,796Updated 3 years ago
• AonCyberLabs / Windows-Exploit-Suggester
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆4,108Updated 2 years ago
• epinna / weevely3
  Weaponized web shell
  ☆3,372Updated 10 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,667Updated 9 months ago
• zer0yu / Awesome-CobaltStrike
  List of Awesome CobaltStrike Resources
  ☆4,262Updated last year
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,022Updated last year
• firefart / dirtycow
  Dirty Cow exploit - CVE-2016-5195
  ☆898Updated last month
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,464Updated last year
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,937Updated 2 years ago
• JohnTroony / php-webshells
  Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!
  ☆1,916Updated 4 years ago
• 3gstudent / Pentest-and-Development-Tips
  A collection of pentest and development tips
  ☆1,122Updated 3 years ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,847Updated last week
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,327Updated last week
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,860Updated 3 years ago
• knownsec / pocsuite3
  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
  ☆3,770Updated 6 months ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,764Updated last year
• quentinhardy / odat
  ODAT: Oracle Database Attacking Tool
  ☆1,696Updated last year
• ohpe / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,647Updated 3 years ago
• bdamele / icmpsh
  Simple reverse ICMP shell
  ☆1,603Updated 7 years ago
• gloxec / CrossC2
  generate CobaltStrike's cross-platform payload
  ☆2,494Updated last year
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆3,197Updated 3 weeks ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,585Updated 4 months ago
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆975Updated last year