#

post-exploitation

Here are 128 public repositories matching this topic...

Manisso / fsociety

Star

fsociety Hacking Tools Pack – A Penetration Testing Framework

python network desktop finder brute-force-attacks post-exploitation exploitation port-scanning information-gathering web-hacking fsociety penetration-testing-framework fsociety-hacking

Updated Oct 16, 2020
Python

n1nj4sec / pupy

Star

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

android python windows linux shell backdoor reverse-shell rat pentesting post-exploitation remote-access payload mac-os meterpreter pupy reflective-injection remote-admin-tool

Updated Dec 23, 2020
Python

malwaredllc / byob

Star

Open

Client ID does not exist

Wasied commented Jun 5, 2020

I don't know why but after trying the botnet on 2 of my machines, they don't have an ID set.

When a client is added byob does give it an ID but it doesn't exist anymore in my clients and I can't shell it.

Clients list :

Can't connect to any shell
![image](https://user-images.g

Read more

bug good first issue help wanted

Open

codec can't decode byte 0x9d in position 0: invalid start byte

3

Open

client.py --encrypt error

1

sundowndev / hacker-roadmap

Star

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

roadmap hacking penetration-testing post-exploitation vulnerabilities pentest exploitation hacking-tool frameworks information-gathering web-hacking hacktools

Updated Oct 19, 2020

GTFOBins / GTFOBins.github.io

Star

GTFOBins is a curated list of Unix binaries that can used to bypass local security restrictions in misconfigured systems

linux unix reverse-shell binaries post-exploitation bypass exfiltration blueteam redteam bind-shell gtfobins

Updated Jan 21, 2021
HTML

Ne0nd0g / merlin

Star

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

agent golang http2 post-exploitation c2 command-and-control

Updated Jan 17, 2021
Go

huntergregal / mimipenguin

Star

A tool to dump the login password from the current linux user

post-exploitation password-extraction

Updated Jun 26, 2020
C

Marten4n6 / EvilOSX

Star

An evil RAT (Remote Administration Tool) for macOS / OS X.

python macos mac backdoor reverse-shell osx python3 rat macosx pentesting post-exploitation

Updated Dec 31, 2020
Python

SILENTTRINITY

byt3bl33d3r / SILENTTRINITY

Sponsor Star

Open

Organize Modules by Category

1

byt3bl33d3r commented Oct 21, 2019

There's enough modules now that this should probably be done, cause scrolling through a ton of modules isn't exactly ideal.

Read more

enhancement good first issue

Open

[BUG] Hash formatting issues with boo/internalmonologue

Open

Stop command needs more user feedback when incorrectly used

1

Find more good first issues →

phpsploit

nil0x42 / phpsploit

Sponsor Star

Open

plugins/proclist: Implement a full-php way to get process list in Linux

2

nil0x42 commented Oct 3, 2020

Current implementation of proclist plugin uses win32_ps_list_procs() php function on Windows host.

Therefore, linux implementation is a simple system("ps -a"), which is OPSEC unsafe, an would probably trigger EDR alerts.

A better implementation should avoid relying on system command execution.

Read more

good first issue stealth to be documented

EntySec / ghost

Star

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

Updated Jan 7, 2021
Python

r00t-3xp10it / venom

Star

venom - shellcode generator/compiler/handler (metasploit)

compiler handler rat shellcode post-exploitation msfvenom metasploit reverse-tcp-shell multi-platform-payloads

Updated Jan 19, 2021
Shell

redcode-labs / Bashark

Star

Bash post exploitation toolkit

bash post-exploitation post-exploitation-toolkit

Updated Sep 24, 2020
Shell

PyExfil

ytisf / PyExfil

Star

A Python Package for Data Exfiltration

python slack dns packets bgp ftp qrcode icmp steganography http-cookies pop3 post-exploitation quic data-exfiltration regin

Updated Jan 2, 2021
Python

Screetsec / Vegile

Star

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

linux backdoor rootkit infinite-scroll postgresql ghost indonesia inject post-exploitation msfvenom unlimited metasploit

Updated Mar 9, 2020
Shell

brimstone / go-shellcode

Sponsor Star

Load shellcode into a new process

go windows shellcode post-exploitation redteam

Updated Apr 26, 2020
Go

AdrianVollmer / PowerHub

Star

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

python powershell post-exploitation pentest remote-admin-tool

Updated Dec 4, 2020
Python

blackarrowsec / mssqlproxy

Star

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

proxy mssql post-exploitation security-tool lateral-movement

Updated Aug 13, 2020
Python

operatorequals / covertutils

Star

A framework for Backdoor development!

python shell agent crypto encryption stream reverse-shell handler rce steganography pentesting post-exploitation payload communication-channel stego

Updated Mar 18, 2018
Python

sifter

s1l3nt78 / sifter

Star

Sifter aims to be a fully loaded Op Centre for Pentesters

Updated Jan 24, 2021
Shell

ToRat

lu4p / ToRat

Sponsor Star

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Updated Jan 24, 2021
Go

sevagas / swap_digger

Star

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

security hacking forensics dfir post-exploitation

Updated Nov 1, 2020
Shell

zMarch / Orc

Star

Orc is a post-exploitation framework for Linux written in Bash

bash post-exploitation

Updated Nov 12, 2019
Shell

jm33-m0 / emp3r0r

Star

linux post-exploitation framework made by linux user

linux rootkit malware rat post-exploitation stealth hacking-tool redteaming redteam trojan-malware emp3r0r

Updated Jan 25, 2021
Go

FunnyWolf / Viper

Star

metasploit-framework 图形界面 / 图形化内网渗透工具

docker viper post-exploitation metasploit-framework cobalt-strike redteam

Updated Jan 25, 2021

RedTeamOperations / PivotSuite

Star

Network Pivoting Toolkit

enterprise hacking post-exploitation pivoting pentest-tool redteam redteam-infrastructure

Updated Jan 27, 2020
Python

emilyanncr / Windows-Post-Exploitation

Star

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

command-line hacking post-exploitation hacking-tool ethical-hacking exploiting-windows

Updated Jan 27, 2018

panagiks / RSPET

Star

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

security security-audit backdoor reverse-shell hacking plug-ins pentesting post-exploitation udp-spoof udp-flood

Updated Oct 31, 2017
Python

alphaSeclab / awesome-cyber-security

Star

[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.

Updated Dec 23, 2019

vonahisec / leprechaun

Star

This tool is used to map out the network data flow to help penetration testers identify potentially valuable targets.

post-exploitation privilege-escalation

Updated Oct 11, 2019
Ruby

Improve this page

Add a description, image, and links to the post-exploitation topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the post-exploitation topic, visit your repo's landing page and select "manage topics."