post-exploitation

There are 130 repositories under post-exploitation topic.

sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation information-gathering pentesting security
12675
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
binaries bind-shell blueteam bypass exfiltration gtfobins linux post-exploitation redteam reverse-shell unix
Language:HTML 10176
Manisso / fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
brute-force-attacks desktop exploitation finder fsociety fsociety-hacking information-gathering network penetration-testing-framework port-scanning post-exploitation python web-hacking
Language:Python 10138
malwaredllc / byob
An open-source post-exploitation framework for students, researchers and developers.
encrypted-connections platform-independent zero-configuration no-dependencies reverse-shells antiforensics post-exploitation
Language:Python 8791
n1nj4sec / pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
android backdoor linux mac-os meterpreter payload pentesting post-exploitation pupy python rat reflective-injection remote-access remote-admin-tool reverse-shell shell windows
Language:Python 8155
Ne0nd0g / merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
http2 command-and-control c2 golang post-exploitation agent
Language:Go 4946
huntergregal / mimipenguin
A tool to dump the login password from the current linux user
post-exploitation password-extraction
Language:C 3691
Viper
FunnyWolf / Viper
Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
metasploit-framework post-exploitation redteam cobalt-strike viper docker attack attack-surface-management red-team-tools
3498
Ghost
EntySec / Ghost
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
adb android-device android android-debug-bridge android-exploit post-exploitation exploit exploitation-framework android-hack android-hacking android-rat rat remote-access kali-linux hack hacking hacking-tools remote-shell backdoor entysec
Language:Python 2556
Marten4n6 / EvilOSX
An evil RAT (Remote Administration Tool) for macOS / OS X.
rat reverse-shell macos macosx mac backdoor python osx post-exploitation pentesting python3
Language:Python 2200
nicocha30 / ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
redteam tunneling golang post-exploitation offensive-security pentest-tool pentesting pivoting
Language:Go 2200
phpsploit
nil0x42 / phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
post-exploitation hacking backdoor stealth hacktool blackhat privilege-escalation php-backdoor hacking-framework webshell advanced-persistent-threat redteam c2 command-and-control php-webshell php-webshell-backdoor persistence web-hacking
Language:Python 2149
SILENTTRINITY
byt3bl33d3r / SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
boolang c-sharp dotnet dotnet-dlr dotnet-script ironpython post-exploitation python3 red-teams security-tools
Language:Boo 2145
MegaManSec / SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
bash exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation security security-tools ssh vulnerability-scanner worm cybersecurity redteam scanner shell ssh-hacking
Language:Shell 1819
r00t-3xp10it / venom
venom - C2 shellcode generator/compiler/handler
metasploit msfvenom shellcode compiler handler post-exploitation reverse-tcp-shell rat multi-platform-payloads
Language:Shell 1714
jm33-m0 / emp3r0r
Linux/Windows post-exploitation framework made by linux user
post-exploitation stealth linux hacking-tool emp3r0r rat trojan-malware malware redteam redteaming rootkit local-privilege-escalation cve-2021-4034
Language:Go 1215
cyberark / kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
containers kubernetes penetration-testing-framework penetration-testing-tools redteam-tools security-tools security post-exploitation golang red-teams c2 http2 command-and-control agent
Language:Go 1078
BlackMamba
loseys / BlackMamba
C2/post-exploitation framework
pyqt5 python3 spyware post-exploitation pentest pentest-tool offensive-security red-team security-tools command-and-control qtframework python
Language:Python 991
ToRat
lu4p / ToRat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
remote-admin-tool tor reverse-shell golang persistence keylogger reverse-shells transport shell-reverse uac-bypass privilege-escalation uacbypass post-exploitation rat windows command-and-control cross-platform payload linux rpc
Language:Go 950
brimstone / go-shellcode
Load shellcode into a new process
shellcode go redteam post-exploitation windows
Language:Go 754
Teardroid-phprat
ScRiPt1337 / Teardroid-phprat
:india: :robot: It's easy to use android botnet work without port forwarding, vps and android studio
android-rat android-botnet botnet rat android-pentesting android-exploitation post-exploitation hacking hacking-tool android-malware keylogger bot
Language:Smali 745
PyExfil
ytisf / PyExfil
A Python Package for Data Exfiltration
python data-exfiltration icmp quic dns qrcode http-cookies regin steganography bgp slack pop3 ftp packets post-exploitation
Language:Python 741
redcode-labs / Bashark
Bash post exploitation toolkit
bash post-exploitation post-exploitation-toolkit
Language:Shell 711
blackarrowsec / mssqlproxy
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
security-tool mssql proxy lateral-movement post-exploitation
Language:Python 705
screetsec / Vegile
This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
backdoor ghost indonesia infinite-scroll inject linux metasploit msfvenom post-exploitation postgresql rootkit unlimited
Language:Shell 701
AdrianVollmer / PowerHub
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
python pentest powershell post-exploitation remote-admin-tool
Language:PowerShell 695
PaulNorman01 / Forensia
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
anti-forensics evasion forensics post-exploitation redteam
Language:C++ 662
b23r0 / Heroinn
A cross platform C2/post-exploitation framework.
c2 pentest-tool post-exploitation rat remote-control trojan-rat
Language:Rust 622
emilyanncr / Windows-Post-Exploitation
Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!
post-exploitation exploiting-windows command-line hacking ethical-hacking hacking-tool
507
Frissi0n / GTFONow
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
pentesting ctf suid-binaries privilege-escalation post-exploitation gtfobins hackthebox pentest redteam hacking security security-tools ctf-tools offensive-security
Language:Python 507
sevagas / swap_digger
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
security dfir post-exploitation hacking forensics
Language:Shell 497
shennina
mazen160 / shennina
Automating Host Exploitation with AI
ai deception-detection machine-learning post-exploitation ransomware host-exploitation ransomware-simulation
Language:Python 468
enkomio / AlanFramework
A C2 post-exploitation framework
security security-tool hacking hacking-tool post-exploitation red-team red-teaming c2
Language:Assembly 461
adbwebkit
jxroot / adbwebkit
ADB For Hackers (:
adb adbwebkit android php androiddebug androiddebugbridge termux android-exploit android-hack android-rat exploitation-framework rat remote-access hacking-tools post-exploitation backdoor hack javascript android-emulator kali-linux
Language:JavaScript 461
alphaSeclab / awesome-cyber-security
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
vulnerability iot-security pentest data-exfiltration metasploit burp kali owasp c2 anti-virus cobalt-strike recon osint social-engineering-attacks password threat-hunt payload wifi-hacking post-exploitation privilege-escalation
445
operatorequals / covertutils
A framework for Backdoor development!
agent crypto stego rce shell python pentesting post-exploitation handler reverse-shell payload steganography encryption communication-channel stream
Language:Python 437