215 Open source projects that are alternatives of or similar to Xsshell

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

A container repository for my public web hacks!

C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + Dinvoke for EDR user-mode hooking evasion.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

The all-in-one Red Team extension for Web Pentester 🛠

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

👨‍🏫 Mike's Web Security Course

Most advanced XSS scanner.

Source code for Hacker101.com - a free online web and mobile security class.

Python script wrote to automate the process of generating various reverse shells.

Forward shell generation framework

A Simple android remote administration tool using sockets. It uses java on the client side and python on the server side

Golang reverse/bind shell generator

A list of useful payloads for Web Application Security and Pentest/CTF

Based on native Python module HTMLParser purifier of HTML, To Clear all javascript in html

An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability

XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.

A jQuery augmented PHP library for creating secure HTML forms, and validating them easily

XSS'OR - Hack with JavaScript.

Reverse Shell as a Service

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

A simple python reverse shell written just for fun.

利用XSS入侵内网(Use XSS automation Invade intranet)

An evil RAT (Remote Administration Tool) for macOS / OS X.

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

Hooks in to interesting functions and helps reverse the web app faster.

Java web and command line applications demonstrating various security topics

Cross-site scripting labs for web application security enthusiasts

generate reverse shell from CLI for linux and Windows.

Automating XSS using Bash

[POC] Asynchronous reverse shell using the HTTP protocol.

A tool to check a bunch of URLs that contain reflecting params.

A backdoor with a multitude of features.

解析VIP资源，解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址

🔨 A multiple reverse shell session/client manager via terminal

Collection of quality safety articles. Awesome articles.

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

JSshell - JavaScript reverse/remote shell

Hacking tools

poc https reverse shell

iOS/macOS/Linux Remote Administration Tool

WAScan - Web Application Scanner

The Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.

🖤 网络安全与渗透测试工具导航

bug bounty hunters starter notes

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS

The Serverless Blind XSS App

Audit tool to find common vulnerabilities in PHP source code

Cure53 Browser Security White Paper

Git All the Payloads! A collection of web attack payloads.

Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder

Reverse shell generator written in Python 3.

Python Remote Administration Tool (RAT)