520 Open source projects that are alternatives of or similar to Girsh

Python AV Evasion Tools

Hershell is a simple TCP reverse shell written in Go.

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Offensive Reverse Shell (Cheat Sheet)

A tool for generating reverse shell payloads on the fly.

A poorman's proxycannon and botnet, using docker, ovpn files, and a dante socks5 proxy

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Overlord - Red Teaming Infrastructure Automation

Collection of quality safety articles. Awesome articles.

Webshell Manager

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked

🌒 Shell command obfuscation to avoid detection systems

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Scan for and exploit Consul agents

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Script collection to bypass Network Access Control (NAC, 802.1x)

Yet Another PHP Shell - The most complete PHP reverse shell

Search for Unix binaries that can be exploited to bypass system security restrictions.

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Automatic Reverse Shell Generator

A list of payload and bypass lists for penetration testing and red team infrastructure build.

🙃 Reverse Shell Cheat Sheet 🙃

cobaltstrike ms17-010 module and some other

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Passwords Recovery Tool

Functions that can be used to gain Reverse Shells with PowerShell

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Golang安全资源合集

Chef repository for pentesting tools

A simple python reverse shell written just for fun.

backdorOS is an in-memory OS written in Python 2.7 with a built-in in-memory filesystem, hooks for open() calls and imports, Python REPL etc.

Notes about attacking Jenkins servers

This challenge is Inon Shkedy's 31 days API Security Tips.

CVE-2016-8610 (SSL Death Alert) PoC

A list to discover work of red team tooling and methodology for penetration testing and security assessment

☠️ The Pathwar Project ☠️

Advanced python HTTP reverse shell made for Hacking Competition purpose. I am not responsible of what you do with this tool.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Burp Suite extension to passively scan for applications revealing server error messages

jSQL Injection is a Java application for automatic SQL database injection.

Vulnerability Dashboard

RFD Checker - security CLI tool to test Reflected File Download issues

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

This is the list of all rootkits found so far on github and other sites.

Utilities for MITRE™ ATT&CK

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

A curated list of awesome OSCP resources

cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.