post-exploitation

There are 132 repositories under post-exploitation topic.

sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
exploitation frameworks hacking hacking-tool hacktools information-gathering penetration-testing pentest pentesting post-exploitation roadmap security web-hacking
12958
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
binaries bind-shell blueteam bypass exfiltration gtfobins linux post-exploitation redteam reverse-shell unix
Language:HTML 10411
Manisso / fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
fsociety exploitation port-scanning fsociety-hacking post-exploitation web-hacking python information-gathering finder desktop penetration-testing-framework network brute-force-attacks
Language:Python 10323
malwaredllc / byob
An open-source post-exploitation framework for students, researchers and developers.
encrypted-connections no-dependencies platform-independent post-exploitation reverse-shells
Language:Python 8849
n1nj4sec / pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
android backdoor linux mac-os meterpreter payload pentesting post-exploitation pupy python rat reflective-injection remote-access remote-admin-tool reverse-shell shell windows
Language:Python 8242
Ne0nd0g / merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
agent c2 command-and-control golang http2 post-exploitation
Language:Go 4996
huntergregal / mimipenguin
A tool to dump the login password from the current linux user
password-extraction post-exploitation
Language:C 3753
Viper
FunnyWolf / Viper
Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
attack attack-surface-management cobalt-strike docker metasploit-framework post-exploitation red-team-tools redteam viper
3591
Ghost
EntySec / Ghost
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
adb android-device android android-debug-bridge android-exploit post-exploitation exploit exploitation-framework android-hack android-hacking android-rat rat remote-access kali-linux hack hacking hacking-tools remote-shell backdoor entysec
Language:Python 2685
nicocha30 / ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
golang offensive-security pentest-tool pentesting pivoting post-exploitation redteam tunneling
Language:Go 2430
Marten4n6 / EvilOSX
An evil RAT (Remote Administration Tool) for macOS / OS X.
backdoor mac macos macosx osx pentesting post-exploitation python python3 rat reverse-shell
Language:Python 2226
phpsploit
nil0x42 / phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
advanced-persistent-threat backdoor blackhat c2 command-and-control hacking hacking-framework hacktool persistence php-backdoor php-webshell php-webshell-backdoor post-exploitation privilege-escalation redteam stealth web-hacking webshell
Language:Python 2171
SILENTTRINITY
byt3bl33d3r / SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
boolang c-sharp dotnet dotnet-dlr dotnet-script ironpython post-exploitation python3 red-teams security-tools
Language:Boo 2160
MegaManSec / SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
bash exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation security security-tools ssh vulnerability-scanner worm cybersecurity redteam scanner shell ssh-hacking
Language:Shell 1905
r00t-3xp10it / venom
venom - C2 shellcode generator/compiler/handler
metasploit msfvenom shellcode compiler handler post-exploitation reverse-tcp-shell rat multi-platform-payloads
Language:Shell 1744
jm33-m0 / emp3r0r
Linux/Windows post-exploitation framework made by linux user
post-exploitation stealth linux hacking-tool emp3r0r rat trojan-malware malware redteam redteaming rootkit local-privilege-escalation cve-2021-4034
Language:Go 1248
cyberark / kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
containers kubernetes penetration-testing-framework penetration-testing-tools redteam-tools security-tools security post-exploitation golang red-teams c2 http2 command-and-control agent
Language:Go 1088
BlackMamba
loseys / BlackMamba
C2/post-exploitation framework
pyqt5 python3 spyware post-exploitation pentest pentest-tool offensive-security red-team security-tools command-and-control qtframework python
Language:Python 1004
ToRat
lu4p / ToRat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
remote-admin-tool tor reverse-shell golang persistence keylogger reverse-shells transport shell-reverse uac-bypass privilege-escalation uacbypass post-exploitation rat windows command-and-control cross-platform payload linux rpc
Language:Go 961
Teardroid-phprat
ScRiPt1337 / Teardroid-phprat
:india: :robot: It's easy to use android botnet work without port forwarding, vps and android studio
android-rat android-botnet botnet rat android-pentesting android-exploitation post-exploitation hacking hacking-tool android-malware keylogger bot
Language:Smali 783
brimstone / go-shellcode
Load shellcode into a new process
go post-exploitation redteam shellcode windows
Language:Go 757
PyExfil
ytisf / PyExfil
A Python Package for Data Exfiltration
python data-exfiltration icmp quic dns qrcode http-cookies regin steganography bgp slack pop3 ftp packets post-exploitation
Language:Python 751
PaulNorman01 / Forensia
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
anti-forensics evasion forensics post-exploitation redteam
Language:C++ 717
redcode-labs / Bashark
Bash post exploitation toolkit
bash post-exploitation post-exploitation-toolkit
Language:Shell 713
blackarrowsec / mssqlproxy
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
security-tool mssql proxy lateral-movement post-exploitation
Language:Python 710
AdrianVollmer / PowerHub
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
pentest post-exploitation powershell python remote-admin-tool
Language:PowerShell 704
screetsec / Vegile
This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
backdoor ghost indonesia infinite-scroll inject linux metasploit msfvenom post-exploitation postgresql rootkit unlimited
Language:Shell 704
b23r0 / Heroinn
A cross platform C2/post-exploitation framework.
c2 pentest-tool post-exploitation rat remote-control trojan-rat
Language:Rust 632
Frissi0n / GTFONow
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
ctf ctf-tools gtfobins hacking hackthebox offensive-security pentest pentesting post-exploitation privilege-escalation redteam security security-tools suid-binaries
Language:Python 524
emilyanncr / Windows-Post-Exploitation
Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!
post-exploitation exploiting-windows command-line hacking ethical-hacking hacking-tool
514
shennina
mazen160 / shennina
Automating Host Exploitation with AI
ai deception-detection machine-learning post-exploitation ransomware host-exploitation ransomware-simulation
Language:Python 503
sevagas / swap_digger
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
dfir forensics hacking post-exploitation security
Language:Shell 503
adbwebkit
jxroot / adbwebkit
ADB For Hackers (:
adb adbwebkit android php androiddebug androiddebugbridge termux android-exploit android-hack android-rat exploitation-framework rat remote-access hacking-tools post-exploitation backdoor hack javascript android-emulator kali-linux
Language:JavaScript 500
enkomio / AlanFramework
A C2 post-exploitation framework
security security-tool hacking hacking-tool post-exploitation red-team red-teaming c2
Language:Assembly 461
alphaSeclab / awesome-cyber-security
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
vulnerability iot-security pentest data-exfiltration metasploit burp kali owasp c2 anti-virus cobalt-strike recon osint social-engineering-attacks password threat-hunt payload wifi-hacking post-exploitation privilege-escalation
450
operatorequals / covertutils
A framework for Backdoor development!
agent crypto stego rce shell python pentesting post-exploitation handler reverse-shell payload steganography encryption communication-channel stream
Language:Python 437