post-exploitation

There are 147 repositories under post-exploitation topic.

sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation information-gathering pentesting security
14540
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
post-exploitation linux unix bypass gtfobins binaries reverse-shell bind-shell exfiltration redteam blueteam
Language:HTML 12083
Manisso / fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
fsociety exploitation port-scanning fsociety-hacking post-exploitation web-hacking python information-gathering finder desktop penetration-testing-framework network brute-force-attacks
Language:Python 11493
malwaredllc / byob
An open-source post-exploitation framework for students, researchers and developers.
encrypted-connections no-dependencies platform-independent post-exploitation reverse-shells
Language:Python 9259
n1nj4sec / pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
pupy python remote-access post-exploitation pentesting windows linux android rat shell reverse-shell reflective-injection backdoor payload meterpreter remote-admin-tool mac-os
Language:Python 8824
Ne0nd0g / merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
http2 command-and-control c2 golang post-exploitation agent
Language:Go 5379
Viper
FunnyWolf / Viper
Adversary simulation and Red teaming platform with AI
metasploit-framework post-exploitation redteam cobalt-strike viper red-team-tools agent ai llm mcp-server
4521
huntergregal / mimipenguin
A tool to dump the login password from the current linux user
post-exploitation password-extraction
Language:C 4006
nicocha30 / ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
redteam tunneling golang post-exploitation offensive-security pentest-tool pentesting pivoting security
Language:Go 3877
Ghost
EntySec / Ghost
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
adb android-device android android-debug-bridge android-exploit post-exploitation exploit exploitation-framework android-hack android-hacking android-rat rat remote-access kali-linux hack hacking hacking-tools remote-shell backdoor entysec
Language:Python 3144
phpsploit
nil0x42 / phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
post-exploitation hacking backdoor stealth hacktool blackhat privilege-escalation php-backdoor hacking-framework webshell advanced-persistent-threat redteam c2 command-and-control php-webshell php-webshell-backdoor persistence web-hacking
Language:Python 2386
Marten4n6 / EvilOSX
An evil RAT (Remote Administration Tool) for macOS / OS X.
rat reverse-shell macos macosx mac backdoor python osx post-exploitation pentesting python3
Language:Python 2368
SILENTTRINITY
byt3bl33d3r / SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
security-tools c-sharp dotnet ironpython python3 red-teams post-exploitation boolang dotnet-script dotnet-dlr
Language:Boo 2277
MegaManSec / SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
bash exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation security security-tools ssh vulnerability-scanner worm cybersecurity redteam scanner shell ssh-hacking
Language:Shell 2245
r00t-3xp10it / venom
venom - C2 shellcode generator/compiler/handler
metasploit msfvenom shellcode compiler handler post-exploitation reverse-tcp-shell rat multi-platform-payloads
Language:Shell 1889
jm33-m0 / emp3r0r
Linux/Windows post-exploitation framework made by linux user
post-exploitation stealth linux hacking-tool emp3r0r rat trojan-malware malware redteam redteaming rootkit local-privilege-escalation cve-2021-4034 c2 penetration-testing-framework
Language:Go 1623
cyberark / kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
containers kubernetes penetration-testing-framework penetration-testing-tools redteam-tools security-tools security post-exploitation golang red-teams c2 http2 command-and-control agent
Language:Go 1197
BlackMamba
loseys / BlackMamba
C2/post-exploitation framework
pyqt5 python3 spyware post-exploitation pentest pentest-tool offensive-security red-team security-tools command-and-control qtframework python
Language:Python 1092
ToRat
lu4p / ToRat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
remote-admin-tool tor reverse-shell golang persistence keylogger reverse-shells transport shell-reverse uac-bypass privilege-escalation uacbypass post-exploitation rat windows command-and-control cross-platform payload linux rpc
Language:Go 1004
AdrianVollmer / PowerHub
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
python pentest powershell post-exploitation remote-admin-tool
Language:PowerShell 819
PyExfil
ytisf / PyExfil
A Python Package for Data Exfiltration
python data-exfiltration icmp quic dns qrcode http-cookies regin steganography bgp slack pop3 ftp packets post-exploitation
Language:Python 793
PaulNorman01 / Forensia
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
anti-forensics evasion forensics post-exploitation redteam
Language:C++ 775
brimstone / go-shellcode
Load shellcode into a new process
shellcode go redteam post-exploitation windows
Language:Go 773
blackarrowsec / mssqlproxy
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
security-tool mssql proxy lateral-movement post-exploitation
Language:Python 751
redcode-labs / Bashark
Bash post exploitation toolkit
bash post-exploitation post-exploitation-toolkit
Language:Shell 741
screetsec / Vegile
This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
rootkit msfvenom indonesia ghost post-exploitation backdoor metasploit infinite-scroll unlimited postgresql linux inject
Language:Shell 739
b23r0 / Heroinn
A cross platform C2/post-exploitation framework.
c2 pentest-tool post-exploitation rat remote-control trojan-rat
Language:Rust 689
adbwebkit
jxroot / adbwebkit
ADB For Hackers (:
adb adbwebkit android php androiddebug androiddebugbridge termux android-exploit android-hack android-rat exploitation-framework rat remote-access hacking-tools post-exploitation backdoor hack javascript android-emulator kali-linux
Language:JavaScript 668
EtherGhost
Marven11 / EtherGhost
新一代Webshell管理器，兼容蚁剑与冰蝎的PHP webshell
awd ctf javascript penetration-testing penetration-testing-tools php php-webshell post-exploitation python webshell
Language:Python 640
Frissi0n / GTFONow
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
pentesting ctf suid-binaries privilege-escalation post-exploitation gtfobins hackthebox pentest redteam hacking security security-tools ctf-tools offensive-security
Language:Python 623
SeaShell
EntySec / SeaShell
SeaShell Framework is an iOS post-exploitation framework that enables you to access the device remotely, control it and extract sensitive information.
post-exploitation ios ios-exploit ios-exploitation jailbreak trollstore ios-hacking ios-malware ipados post-exploitation-toolkit remote-access-tool exploit exploitation remote-admin-tool reverse-shell
Language:Python 612
emilyanncr / Windows-Post-Exploitation
Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!
post-exploitation exploiting-windows command-line hacking ethical-hacking hacking-tool
544
shennina
mazen160 / shennina
Automating Host Exploitation with AI
ai deception-detection machine-learning post-exploitation ransomware host-exploitation ransomware-simulation
Language:Python 543
sevagas / swap_digger
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
security dfir post-exploitation hacking forensics
Language:Shell 525
enkomio / AlanFramework
A C2 post-exploitation framework
security security-tool hacking hacking-tool post-exploitation red-team red-teaming c2
Language:Assembly 482
alphaSeclab / awesome-cyber-security
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
vulnerability iot-security pentest data-exfiltration metasploit burp kali owasp c2 anti-virus cobalt-strike recon osint social-engineering-attacks password threat-hunt payload wifi-hacking post-exploitation privilege-escalation
478