79 Open source projects that are alternatives of or similar to Bashark

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Linux post exploitation privilege escalation enumeration

DNS File EXfiltration

Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.

Relational database brute force and post exploitation tool for MySQL and MSSQL

Search for Unix binaries that can be exploited to bypass system security restrictions.

🇮🇳 🤖 It's easy to use android botnet work without port forwarding, vps and android studio

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

Little tool made in python to create payloads for Linux, Windows and OSX with unique handler

XENA is the managed remote administration platform for botnet creation & development powered by blockchain and machine learning. Aiming to provide an ecosystem which serves the bot herders. Favoring secrecy and resiliency over performance. It's micro-service oriented allowing for specialization and lower footprint. Join the community of the ulti…

An evil RAT (Remote Administration Tool) for macOS / OS X.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

A framework for Backdoor development!

A C2 post-exploitation framework

Assist reverse tcp shells in post-exploration tasks

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

DNS-Persist is a post-exploitation agent which uses DNS for command and control.

Post-Exploitation 😎 module for Penetration Tester and Hackers.

My collection of metasploit auxiliary post-modules

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

Bifrost C2. Open-source post-exploitation using Discord API

PoC script showing that MacOS leaves the wireless key in NVRAM, in plaintext and accessible to anyone.

A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Steal user's password when running sudo for post-exploitation purposes

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

A tool to dump the login password from the current linux user

A basic AIX enumeration guide for penetration testers/red teamers

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

This is the ToRat client, a part of the ToRat Project.

log file scrubber

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

linux post-exploitation framework made by linux user

Hacks credit card PAN numbers by using partial Hashes, and a list of random PAN [pins]

mOrc is a post-exploitation framework for macOS written in Bash

This tool is used to map out the network data flow to help penetration testers identify potentially valuable targets.

C2/post-exploitation framework

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A tool that allows you to search for vulnerable android devices across the world and exploit them.

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Sifter aims to be a fully loaded Op Centre for Pentesters

[unmaintained] Post-exploitation tool

My Presentations in PDF

Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.

Load shellcode into a new process

备考 OSCP 的各种干货资料/渗透测试干货资料

Static Binary Deployer. Download and deploy *Nix utilities on a compromised system.

Chrome Keylogger Extension | Post Exploitation Tool

Orc is a post-exploitation framework for Linux written in Bash

A Visual Studio Code Extension agent for Mythic C2

A Python Package for Data Exfiltration

metasploit-framework 图形界面 / 图形化内网渗透工具

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

Network Pivoting Toolkit

Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)