79 Open source projects that are alternatives of or similar to Evasor

Search for Unix binaries that can be exploited to bypass system security restrictions.

Little tool made in python to create payloads for Linux, Windows and OSX with unique handler

metasploit-framework 图形界面 / 图形化内网渗透工具

Network Pivoting Toolkit

Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.

An open-source post-exploitation framework for students, researchers and developers.

DNS File EXfiltration

Post-Exploitation Framework

Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Assist reverse tcp shells in post-exploration tasks

A Python Package for Data Exfiltration

Post-Exploitation 😎 module for Penetration Tester and Hackers.

unix SSH post-exploitation 1337 tool

Bifrost C2. Open-source post-exploitation using Discord API

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

XENA is the managed remote administration platform for botnet creation & development powered by blockchain and machine learning. Aiming to provide an ecosystem which serves the bot herders. Favoring secrecy and resiliency over performance. It's micro-service oriented allowing for specialization and lower footprint. Join the community of the ulti…

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

A framework for Backdoor development!

Sifter aims to be a fully loaded Op Centre for Pentesters

This is the ToRat client, a part of the ToRat Project.

fsociety Hacking Tools Pack – A Penetration Testing Framework

Orc is a post-exploitation framework for Linux written in Bash

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

A tool to dump the login password from the current linux user

💻⚠️ A curated collection of awesome malware, botnets, and other post-exploitation tools.

log file scrubber

Bash post exploitation toolkit

mOrc is a post-exploitation framework for macOS written in Bash

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

A tool that allows you to search for vulnerable android devices across the world and exploit them.

C2/post-exploitation framework

My Presentations in PDF

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

Static Binary Deployer. Download and deploy *Nix utilities on a compromised system.

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

A Visual Studio Code Extension agent for Mythic C2

.NET 4.0 Remote Desktop Manager Password Gatherer

PoC script showing that MacOS leaves the wireless key in NVRAM, in plaintext and accessible to anyone.

Load shellcode into a new process

Steal user's password when running sudo for post-exploitation purposes

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

A basic AIX enumeration guide for penetration testers/red teamers

A shell script that automatically performs a series of *NIX enumeration tasks.

linux post-exploitation framework made by linux user

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

(windows) post exploitation: dll injection, process hollowing, RunPe, Keyloggers, UacByPass etc..

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

venom - shellcode generator/compiler/handler (metasploit)

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication