php-webshells
PHP webshells
A collection of PHP webshells designed for educational purposes in penetration testing and CTF challenges.
Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!
2k stars
133 watching
774 forks
Language: PHP
last commit: over 3 years ago
Linked from 1 awesome list
fabacab/awesome-malwareRelated projects:
| Repository | Description | Stars |
|---|---|---|
 chrisallenlane/novahot | A webshell framework for penetration testers to interact with remote systems and execute system commands. | 295 |
 s0md3v/nano | A family of PHP web shells designed to be stealthy and efficient, allowing users to execute system commands remotely | 435 |
 blackarch/webshells | A collection of PHP-based web application vulnerabilities and exploits | 892 |
 palindromelabs/stews | A tool suite for security testing of WebSockets | 334 |
 wangyihang/webshell-sniper | A terminal-based tool to manage web servers via PHP or MySQL, allowing for post-exploitation control. | 420 |
 jbarcia/web-shells | A collection of web-based tools and interfaces to interact with and manage various data storage systems using standard protocols. | 167 |
 jcesarstef/dotdotslash | Automated tool to test website directory traversal vulnerabilities by injecting user-controlled input into URLs and analyzing responses. | 418 |
 incredibleindishell/ssrf_vulnerable_lab | A laboratory repository demonstrating vulnerable PHP code examples for Server-Side Request Forgery (SSRF) attacks | 670 |
 ivan-sincek/penetration-testing-cheat-sheet | A comprehensive resource for penetration testing and vulnerability assessment | 660 |
 swisskyrepo/payloadsallthethings | A comprehensive collection of tools and techniques for web application security testing and exploitation | 61,337 |
 joaotavora/hunchensocket | An implementation of WebSockets as an extension to the Hunchentoot web server. | 111 |
 dotcppfile/daws | A PHP-based web shell designed to bypass security systems and automate file management tasks. | 572 |
| palindromelabs/websockets-playground | A platform for testing and experimenting with WebSocket servers. | 28 |
 jaeles-project/jaeles | Automated Web Application Testing framework | 2,166 |
 0ang3el/websocket-smuggle | A tool to expose security vulnerabilities in WebSocket reverse proxying allowing HTTP requests to be smuggled through | 336 |