15 repository-uri
Tools that establish outbound network connections from a target to a listener for remote command execution.
Distinct from Socket Networking: Candidates cover generic socket networking or command execution, but not the specific 'reverse shell' attack pattern.
Explore 15 awesome GitHub repositories matching security & cryptography · Reverse Shells. Refine with filters or upvote what's useful.
The Social-Engineer Toolkit is a social engineering framework and penetration testing suite designed to simulate human-centric security attacks. It serves as a phishing simulation tool and credential harvesting utility to evaluate personnel awareness and organizational resilience. The toolkit provides specialized tooling for phishing campaign testing and credential theft simulation. It enables the creation of deceptive emails and landing pages to identify vulnerabilities in how users handle sensitive account information. The system includes capabilities for security awareness training and br
Establishes socket-based reverse shells for remote command execution on target machines.
Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows targets. It functions as a post-exploitation toolkit and payload generator to automate attacks and manage remote targets. The project provides specialized capabilities for bypassing security controls, such as disabling the Antimalware Scan Interface and employing in-memory execution to avoid disk-based detection. It includes a variety of stealthy command and control mechanisms, utilizing non-standard channels like DNS TXT records, ICMP traffic, and webmail for communication a
Creates an interactive remote shell that transmits data over ICMP traffic to bypass firewall restrictions.
This project is a post-exploitation framework and command and control platform designed for security research and penetration testing. It functions as a remote access tool consisting of a central command server and encrypted executable payloads that establish reverse shell connections. The system utilizes a web-based dashboard for multi-client administration, allowing for remote host monitoring and direct shell access through an in-browser terminal. It generates cross-platform, encrypted binaries that employ a multi-stage delivery chain and a key exchange mechanism to secure communications.
Uses a reverse shell architecture where clients initiate outbound connections to bypass firewalls.
fuzzdb is a collection of datasets designed for web application penetration testing and dynamic fuzzing. It provides a fuzzing payload dictionary, a resource discovery wordlist, and a fault injection dataset containing corrupted Unicode, null bytes, and escape codes to trigger application crashes and logic errors. The project includes a security filter bypass list featuring polyglots and encoded strings to evade web application firewalls and input validation filters. It also provides a comprehensive web application penetration testing dataset specifically for identifying flaws such as cross-s
Includes payloads and patterns used to establish remote interactive command shells on target systems.
Yakit is a comprehensive cybersecurity all-in-one platform designed for security assessments. It integrates a suite of core tools including an HTTP interception proxy for real-time traffic modification, an out-of-band interaction detector for verifying remote command execution via TCP, DNSLog, and ICMP, and a reverse shell manager for controlling remote server connections. The platform is distinguished by its dedicated security scripting environment, which allows for the development and execution of custom logic and plugins using a specialized high-performance language. It further extends fun
Ships a reverse shell manager to control remote server connections and deliver exploitation payloads.
scan4all is an all-in-one vulnerability scanner that orchestrates parallel network reconnaissance, service cracking, and exploit execution across a wide range of protocols. It combines port discovery, web fingerprinting, password cracking, and a plugin-based database of over 15,000 proof-of-concept exploits into a single automated pipeline, with results streamed to Elasticsearch for structured querying and analysis. The tool distinguishes itself through its multi-engine orchestration, coordinating tools like nmap, naabu, and nuclei under one pipeline to avoid redundant work and share results.
Establishes reverse shell connections during engagements using a multi-target web netcat utility.
Ladon este un scanner de penetrare a rețelei interne și un instrument de evaluare a vulnerabilităților conceput pentru a identifica defectele de securitate cu risc ridicat și activele din segmentele de rețea. Operează ca un scanner de securitate fileless, executându-și motorul și modulele direct în memorie pentru a evita lăsarea unei amprente pe disc pe sistemele țintă. Proiectul se distinge prin integrarea sa ca plugin pentru beacon-uri de comandă, specific în cadrul framework-ului Cobalt Strike. Acest lucru permite descoperirea rețelei și detectarea vulnerabilităților rezidente în memorie. Suportă, de asemenea, operațiuni stealth prin obfuscarea payload-urilor și a scripturilor, precum și tehnici de evitare a detectării de către sistemele de endpoint detection and response (EDR). Instrumentul oferă o suită cuprinzătoare de capabilități pentru post-exploatare, inclusiv auditarea credențialelor, extracția și executarea atacurilor Kerberos pentru penetrarea domeniului. Gestionează descoperirea activelor prin scanare multi-protocol și fingerprinting-ul serviciilor pentru a identifica sistemele de operare și tehnologiile web. În plus, suportă automatizarea mișcării laterale, escaladarea privilegiilor și implementarea payload-urilor de execuție de cod la distanță. Framework-ul este extensibil printr-o arhitectură de plugin-uri care permite încărcarea dinamică a ansamblurilor sau scripturilor externe pentru a adăuga module de scanare personalizate și dovezi de concept.
Establishes outbound network connections from targets to listeners to provide remote command-line access.
CDK este un set de instrumente specializat pentru auditul securității containerelor, exploatarea evadării din containere și pentesting-ul infrastructurii cloud. Acesta oferă o colecție de scripturi și instrumente concepute pentru a identifica și exploata vulnerabilitățile din runtime-urile containerelor pentru a ieși din mediile izolate și a executa comenzi pe sistemul de operare gazdă subiacent. Proiectul dispune de o suită dedicată de exploit-uri pentru runtime-ul Docker, destinată abuzării API-ului Docker, procfs și cgroups pentru a obține acces neautorizat la nivel de gazdă. Include tehnici specifice pentru ocolirea izolării prin LXCFS, exploatarea spațiilor de nume ale utilizatorilor și montarea discurilor gazdă, precum și capabilități pentru extragerea metadatelor cloud și auditarea permisiunilor conturilor de serviciu pentru escaladarea privilegiilor în medii de cluster. Toolkit-ul acoperă o gamă largă de capabilități de auditare a securității, inclusiv auditarea clusterelor Kubernetes pentru exfiltrarea secretelor și analiza politicilor, scanarea fișierelor și serviciilor sensibile și detectarea partajării rețelei gazdă. De asemenea, oferă utilitare pentru stabilirea de reverse shell-uri, implementarea de payload-uri în medii restricționate și instalarea de instrumente de administrare a sistemului în containere minimale.
Provides capabilities to spawn interactive reverse shell sessions for remote command execution from containerized environments.
Villain este un framework de comandă și control și un orchestrator distribuit conceput pentru gestionarea conexiunilor reverse TCP și HoaxShell. Servește ca manager de reverse shell și instrument de generare de payload-uri, permițând coordonarea accesului remote pe mai multe sisteme țintă. Proiectul se distinge printr-o arhitectură distribuită care sincronizează sesiunile remote active și transmite mesaje către instanțele de server conectate pentru operațiuni colaborative. Include un motor de execuție fileless care rulează scripturi direct în memoria remote prin HTTP pentru a evita scrierea fișierelor pe discul țintă. Framework-ul acoperă generarea de payload-uri pentru diverse sisteme de operare folosind template-uri și codificări personalizabile. Oferă capabilități de gestionare a sesiunilor, inclusiv upgrade-uri de shell interactiv către pseudo-terminale, persistența sesiunii și monitorizarea stabilității pentru a preveni crash-urile shell-ului remote. Transferul de date este gestionat printr-un serviciu automat de HTTP smuggling pentru încărcarea fișierelor în sesiunile active.
Interacts with remote terminal sessions and upgrades basic shells into fully interactive pseudo-terminals.
This project is a suite of tools for generating encoded shell commands and network listener configurations used in offensive security operations. It provides a collection of command generators for various shells and listeners to establish remote access during security penetration tests. The tool features a reverse shell payload generator that creates encoded command strings and a network listener command generator that produces the server-side syntax needed to accept incoming network connections. It includes a Base64 command encoder to transform shell commands into encoded strings to bypass s
A functionality in the tool that creates command strings for various shells and listeners to establish remote access during security tests.
This project is a comprehensive command-line reference and toolkit designed for Linux system administration and network security assessment. It provides a collection of technical snippets and operational guides focused on managing remote environments, orchestrating shell sessions, and executing administrative tasks through native terminal utilities. The repository distinguishes itself by offering specialized techniques for stealthy operations and infrastructure manipulation. It covers methods for establishing encrypted tunnels to bypass firewalls, obfuscating process identities and command hi
Provides techniques for establishing reverse shell connections to bypass network restrictions.
Hoaxshell is a command and control system for Windows remote command execution. It provides a framework for generating and managing reverse shell payloads that utilize an HTTP beaconing protocol, where victim clients periodically poll a handler to receive and execute instructions. The project distinguishes itself through its ability to bypass PowerShell Constrained Language Mode using specialized payload generation. It supports encrypted command and control via TLS certificate injection and provides mechanisms for remote session recovery, allowing a handler to reestablish control over active
Generates and manages Windows reverse shell payloads that communicate over HTTP or HTTPS for remote command execution.
Exegol is an offensive security platform and containerized tooling orchestrator designed to deploy and manage isolated security operations environments. It functions as a workspace manager that provisions pre-configured security images and toolkits within Docker containers to protect host systems from malicious payloads. The platform distinguishes itself by integrating AI security workflow orchestration, allowing AI assistants to discover and trigger security tools through a standardized communication protocol. It further provides remote desktop gateway capabilities, enabling GUI access via X
The product creates dynamic reverse-shell commands and provides tools to stabilize the interactive experience.
This project consists of PHP-based payloads and scripts designed to establish reverse network connections for remote shell access. It functions as a remote command execution tool used during security auditing to gain an interactive shell on a web server. The scripts utilize PHP network sockets to redirect system shell input and output to a remote TCP connection. This allows for the establishment of a network connection from a target server back to a controlled machine to execute remote commands. These capabilities support penetration testing workflows, PHP server auditing, and post-exploitat
Implements a reverse shell script that connects a target PHP server back to a remote listener for command execution.
jexboss is a Java deserialization exploit framework and network vulnerability scanner designed to identify and exploit deserialization flaws to achieve remote code execution on target servers. It functions as a suite of tools for delivering payloads and executing system commands on vulnerable remote applications. The project includes a reverse shell orchestrator to establish and maintain persistent remote command connections from exploited targets back to a listener. It also provides post-exploitation automation for managing remote access and updating software on compromised systems. The fra
Establishes a persistent network connection from the compromised target back to a listener for remote terminal access.