phpsploit
Backdoor framework
A tool allowing attackers to remotely execute commands and maintain persistence on compromised web servers using stealthy PHP backdoors.
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
2k stars
104 watching
440 forks
Language: Python
last commit: 7 months ago
Linked from 6 awesome lists
advanced-persistent-threatbackdoorblackhatc2command-and-controlhackinghacking-frameworkhacktoolpersistencephp-backdoorphp-webshellphp-webshell-backdoorpost-exploitationprivilege-escalationredteamstealthweb-hackingwebshell
enaqx/awesome-pentest
carpedm20/awesome-hacking
sbilly/awesome-security
qazbnm456/awesome-web-security
infoslack/awesome-web-hacking
fabacab/awesome-malwareRelated projects:
| Repository | Description | Stars |
|---|---|---|
 bartblaze/php-backdoors | A collection of PHP backdoors for educational and testing purposes only. | 2,206 |
 wahyuhadi/beacon-c2-go | A backdoor tool designed to facilitate remote access and command execution on Windows systems | 38 |
 kaiyuanzh/flip | A framework for defending against backdoor attacks in federated learning systems | 44 |
 paulsec/twittor | A tool that uses Twitter as a covert command and control server for remotely executing commands on compromised systems. | 760 |
 netero1010/quser-bof | A proof-of-concept implementation of a Windows API-based backdoor using the quser.exe utility | 83 |
 snovvcrash/bofs | A collection of C code snippets demonstrating various Windows backdoors and command execution methods | 51 |
 ebagdasa/backdoor_federated_learning | An implementation of a framework for backdoors in federated learning, allowing researchers to test and analyze various attacks on distributed machine learning models. | 271 |
 spidermate/b-xssrf | A toolkit to detect and track vulnerabilities in web applications | 295 |
 ybdai7/chameleon-durable-backdoor | A federated learning system implementation that enables planting durable backdoors in global models by adapting to peer images. | 32 |
 0ang3el/websocket-smuggle | A tool to expose security vulnerabilities in WebSocket reverse proxying allowing HTTP requests to be smuggled through | 336 |
 ethz-spylab/rlhf_trojan_competition | Detecting backdoors in language models to prevent malicious AI usage | 107 |
 justinas/nosurf | Protects against Cross-Site Request Forgery (CSRF) attacks in web applications by verifying user input | 1,589 |
 rew-sploit/rew-sploit | Analyzes and dissects malware and obfuscated code from various attack frameworks like Metasploit and Cobalt Strike | 139 |
 kudaes/lolbits | A C2 framework using BITS and direct syscalls to establish a covert communication channel | 214 |
 slimphp/slim-csrf | A middleware solution to protect against Cross-Site Request Forgery attacks in HTTP requests | 338 |