guillaC / Wsmanager
Licence: gpl-3.0
Webshell Manager
Stars: ✭ 99
Projects that are alternatives of or similar to Wsmanager
Gorsh
A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface
Stars: ✭ 97 (-2.02%)
Mutual labels: security-tools, infosec, redteam
Webshell Sniper
🔨 Manage your website via terminal
Stars: ✭ 359 (+262.63%)
Mutual labels: security-tools, pentest, webshell
NIST-to-Tech
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (-38.38%)
Mutual labels: infosec, pentest, redteam
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+3652.53%)
Mutual labels: infosec, pentest, redteam
Diamorphine
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (+632.32%)
Mutual labels: security-tools, pentest, redteam
Cloakify
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
Stars: ✭ 1,136 (+1047.47%)
Mutual labels: security-tools, pentest, infosec
volana
🌒 Shell command obfuscation to avoid detection systems
Stars: ✭ 38 (-61.62%)
Mutual labels: infosec, pentest, redteam
Hacker Container
Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters
Stars: ✭ 105 (+6.06%)
Mutual labels: security-tools, pentest, infosec
Spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+6851.52%)
Mutual labels: infosec, pentest, security-tools
Ios
Most usable tools for iOS penetration testing
Stars: ✭ 563 (+468.69%)
Mutual labels: security-tools, pentest, infosec
Hershell
Hershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (+346.46%)
Mutual labels: pentest, infosec, redteam
Dumpsterfire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (+682.83%)
Mutual labels: security-tools, pentest, infosec
Chashell
Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.
Stars: ✭ 742 (+649.49%)
Mutual labels: pentest, infosec, redteam
Snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Stars: ✭ 886 (+794.95%)
Mutual labels: pentest, infosec, redteam
Rfd Checker
RFD Checker - security CLI tool to test Reflected File Download issues
Stars: ✭ 56 (-43.43%)
Mutual labels: pentest, infosec
Jaeles
The Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (+983.84%)
Mutual labels: security-tools, infosec
Resources
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-37.37%)
Mutual labels: security-tools, infosec
Macro pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
Stars: ✭ 1,072 (+982.83%)
Mutual labels: pentest, redteam
Metaforge
An OSINT Metadata analyzing tool that filters through tags and creates reports
Stars: ✭ 63 (-36.36%)
Mutual labels: security-tools, infosec
Gitgraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+1075.76%)
Mutual labels: security-tools, redteam
Information
wsManager can be used to quickly execute commands on a server while pentesting a PHP application. The client interface is written in C#, which operate using a simple web-based backdoor implemented by user himself.
Once uploaded, the web shell can be accessed by the client at any time. Once successfully connected, the user proceeds to manipulate files and data on the web server.
The server-side code is extremely simple and contains just a single line of code :
<?php @eval($_GET["x"]); ?>
Many commands and control features:
- File manager (upload, download, archiver, etc)
- Command execution
- PHP Exec
- SQL Explorer
- Screen Viewer (windows only)
Documentation
Coming soon
Screenshots
Disclaimer
I, the creator, am not responsible for any actions, and or damages, caused by this software. You bear the full responsibility of your actions and acknowledge that this software was created for educational purposes only. This software's main purpose is NOT to be used maliciously, or on any system that you do not own, or have the right to use. By using this software, you automatically agree to the above.
Changelog
04/04/2020
- PHP Code Execution
- HTTPS Support
09/09/2019
- ScreenViewer Added
Misc
Todo:
- .
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].