370 Open source projects that are alternatives of or similar to Shelly

Offensive Reverse Shell (Cheat Sheet)

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.

C# tool to discover low hanging fruits

Red Teaming Tactics and Techniques

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Functions that can be used to gain Reverse Shells with PowerShell

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Hershell is a simple TCP reverse shell written in Go.

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Search for Unix binaries that can be exploited to bypass system security restrictions.

Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...

PHP shells that work on Linux OS, macOS, and Windows OS.

The reverse shell client is a Python based alternative for a netcat reverse shell listener

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Python script wrote to automate the process of generating various reverse shells.

Python AV Evasion Tools

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

🙃 Reverse Shell Cheat Sheet 🙃

Yet Another PHP Shell - The most complete PHP reverse shell

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Red Teaming Tactics and Techniques

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

It records your terminal, then lets you upload to ASHIRT

C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked

Cobalt Strike AggressorScripts For Red Team

A little tool to play with Outlook

k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.

trolo - an easy to use script for generating Payloads that bypasses antivirus

一个简单实用的FOFA客户端 By flashine

A multi-platform HTTP(S) Reverse Shell Server and Client in Python 3

A Python 3 standalone Windows 10 / Linux Rootkit using Tor.

WiFi Penetration Testing Guide

Raspberry Pi Based Serial Console Server, with PushBullet Notification of IP changes, Automatic VPN termination, custom menu, Power Outlet Control, and a lot more

One stop place for exploiting Jira instances in your proximity

The source code of https://rshell.dev

Bifrost C2. Open-source post-exploitation using Discord API

A Cobalt Strike Aggressor script to generate GadgetToJScript payloads

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Reverse shell auto generator used for Hackthebox/OSCP/Pentest/LABExp

🐝 A highly scalable, safe, free enterprise honeypots 一款高可扩展、安全、免费的企业级蜜罐系统

No description or website provided.

Opening the door, one reverse shell at a time

GoRAT (Go Remote Access Tool) is an extremely powerful reverse shell, file server, and control plane using HTTPS reverse tunnels as a transport mechanism.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Information Security Library

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

Bluetooth reverse shell.

SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#

Scan for and exploit Consul agents

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

基于Threathunting-book基础上完善的狩猎视角红队handbook

Autowin is a framework that helps organizations simulate custom attack scenarios in order to improve detection and response capabilities.

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

Purple Team Exercise Framework

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

A mud engine using telnet and Web sockets for web built with NodeJs