1366 Open source projects that are alternatives of or similar to Reverse Shell

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

rsGen is a Reverse Shell Payload Generator for hacking.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Yet Another PHP Shell - The most complete PHP reverse shell

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Proof of concept of VMSA-2017-0012

Unsigned code loader for Exynos BootROM

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Misc. Public Reports of Penetration Testing and Security Audits.

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

Real world and CTFs exploiting web/binary POCs.

Extraction of iMessage Data via XSS

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Some of my public exploits

DoS PoC's for SAP products

My exploitDB.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

Guest to host VM escape exploit for Parallels Desktop

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

IoT 固件漏洞复现环境

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

Proofs-of-concept

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

🔨 A modern multiple reverse shell sessions manager wrote in go

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

A backdoor with a multitude of features.

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

The all-in-one Red Team extension for Web Pentester 🛠

Advanced Web Browser Fingerprinting

Extensible framework for analyzing publicly available information about vulnerabilities

Powerful dork searcher and vulnerability scanner for windows platform

Kubernetes security and vulnerability tools and utilities.

SQL Injection Payload List

[POC] Asynchronous reverse shell using the HTTP protocol.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Apache Shiro 反序列化漏洞检测与利用工具

Exploiting Edge's read:// urlhandler

Asynchronous Python implementation of SlowLoris DoS attack

Multiplatform reverse shell generator

A framework for Backdoor development!

hack tools

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Vulnerability Labs for security analysis

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

Here you can get full exploit for SAP NetWeaver AS JAVA

An evil RAT (Remote Administration Tool) for macOS / OS X.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能