he1m4n6a / Findwebshell
findWebshell是一款基于python开发的webshell检测工具。
Stars: ✭ 246
Programming Languages
python
139335 projects - #7 most used programming language
Labels
Projects that are alternatives of or similar to Findwebshell
Webshell Sniper
🔨 Manage your website via terminal
Stars: ✭ 359 (+45.93%)
Mutual labels: security-tools, webshell
Insider
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: ✭ 216 (-12.2%)
Mutual labels: security-tools
Zbang
zBang is a risk assessment tool that detects potential privileged account threats
Stars: ✭ 224 (-8.94%)
Mutual labels: security-tools
Privacy.sexy
Open-source tool to enforce privacy & security best-practices on Windows and macOS, because privacy is sexy 🍑🍆
Stars: ✭ 221 (-10.16%)
Mutual labels: security-tools
Grapefruit
(WIP) Runtime Application Instruments for iOS. Previously Passionfruit
Stars: ✭ 235 (-4.47%)
Mutual labels: security-tools
Cameradar
Cameradar hacks its way into RTSP videosurveillance cameras
Stars: ✭ 2,775 (+1028.05%)
Mutual labels: security-tools
Android Pin Bruteforce
Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
Stars: ✭ 217 (-11.79%)
Mutual labels: security-tools
Honggfuzz Rs
Fuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (-9.76%)
Mutual labels: security-tools
Linux Exploit Suggester
Linux privilege escalation auditing tool
Stars: ✭ 3,126 (+1170.73%)
Mutual labels: security-tools
Kubestriker
A Blazing fast Security Auditing tool for Kubernetes
Stars: ✭ 213 (-13.41%)
Mutual labels: security-tools
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1297.97%)
Mutual labels: security-tools
工具简介
findWebshell是一款基于python开发的webshell检查工具,可以通过配置脚本,方便得检测webshell后门。
使用说明
Usage: main.py [options]
Options:
-h, --help show this help message and exit
-p PATH, --path=PATH input web directory filepath
-o OUTPUT, --output=OUTPUT
create a html report
-e php|asp|aspx|jsp|all, --ext=php|asp|aspx|jsp|all
define what's file format to scan
示例
python main.py -e php -p /var/www/test -o output
-e 网页格式
-p 扫描的路径
-o 生成的html文件名,默认生成report.html
开发文档
字典添加
- directory目录下的sensitiveWord.py定义的是后门中的敏感关键字,可以手动添加,格式为{"关键字":"类型"}
php_sensitive_words = {
"www.phpdp.org":"PHP神盾加密后门",
"www.phpjm.net":"PHP加密后门"
}
- directory目录下的webshell.py定义的是webshell列表,直接添加webshell到列表里
php_webshell = [
"后门.php",
"xxoo.php",
"一句话.php"
]
插件开发
- 命令规范
插件命名格式:网页类型_后门类型-plugin.py
示例
php_eval_assert-plugin.py
php_preg_replace-plugin.py
asp_execute-plugin.py
- 函数规范和返回值
函数格式
def judgeBackdoor(fileCtent)
成功返回后门类型,失败返回None
示例
def judgeBackdoor(fileCtent):
if keyword in fileCtent:
result = re.compile(rule).findall(fileCtent)
if len(result) > 0:
return backdoorType
else:
return None
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].