Mirrors/webshell
2
0
Fork 0
mirror of https://github.com/tennc/webshell synced 2025-02-16 09:48:24 +00:00
Code Issues Projects Releases Packages Wiki Activity
No description
659 commits 1 branch 7 tags 100 MiB
PHP 48.6%
Java 23.3%
Classic ASP 16.5%
ASP.NET 4.9%
PowerShell 4.3%
Other 2.3%
Find a file
tennc a5b681ccf8
Create system2022-08-22-3.php 
from: https://zhuanlan.zhihu.com/p/550150061
__FILE__是PHP的一个魔术常量,它会返回当前执行PHP脚本的完整路径和文件名,我们利用substr()函数逆着截取,就能获得system再利用变量做函数的方式,打断了污点追踪的过程,进行命令执行,也可以成功bypass掉牧云引擎。
usage:
file:xxx.php
post: body==>1=whoami
2022-08-22 22:40:18 +08:00
.github Delete codeql-analysis.yml 2022-05-08 14:19:17 +08:00
138shell Update r57 Shell.php.txt 2016-10-07 16:08:54 +08:00
antSword add pic 2016-05-16 09:34:58 +08:00
antSword-shells add php3.php 2021-08-15 16:15:40 +08:00
AntSwordProject add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
asp Rename 2022-08-12.asp.txt to 2022-08-12.aspx.txt 2022-08-12 00:54:31 +08:00
aspx Update .NET WebShell 免杀系列之Unicode编码.md 2022-07-26 13:28:26 +08:00
b4tm4n-toolz Added B4TM4N TOOLZ 2018-12-20 15:51:32 +08:00
Backdoor Dev Shells add devilzshell 2014-05-22 08:40:33 +08:00
backlion add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
bartblaze add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
Behinder Create 简单的冰蝎流量魔改.md 2022-08-05 23:15:17 +08:00
BlackArch add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
caidao-shell Create bypass01.php 2016-08-09 12:16:20 +08:00
content add Webshell免杀的思考与学习.mhtml 2020-12-28 01:02:49 +08:00
DeEpinGh0st add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
docs Delete CNAME 2020-08-30 15:14:38 +08:00
drag add mssql.asp 2015-04-28 09:18:26 +08:00
fuzzdb-webshell fixed typo 2022-04-12 09:37:10 -04:00
Godzilla Create 20220213_03.php 2022-02-13 22:28:25 +08:00
java/字节码增强型 add assect 2021-06-05 15:03:48 +08:00
JohnTroony add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
JoyChou93 add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
jsp Create WebSocket 内存马,一种新型内存马技术.md 2022-08-08 22:33:21 +08:00
jspx Create jw.jspx 2015-05-18 15:12:43 +08:00
LandGrey add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
lcatro add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
lhlsec add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
malwares add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
msmap add msmap 2022-08-20 @hosch3n 👍 2022-08-20 17:25:19 +08:00
net-friend add 啊D小工具 - 目录读写检测 [ASPX版].aspx 2016-04-19 19:57:57 +08:00
nodejs 增加了nodejs 开启bash的shell 2018-12-22 19:30:19 +08:00
oneoneplus add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
other add small_shell.txt @tdifg 👍 2015-06-18 08:43:25 +08:00
php Create system2022-08-22-3.php 2022-08-22 22:40:18 +08:00
pl perl web shell 2021-12-28 19:56:11 +05:30
py add python flask 内存马 @jweny 2021-06-04 19:54:16 +08:00
rec add reverse-shell-cheat-sheet 2015-11-06 13:50:00 +08:00
tanjiti add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
tdifg add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
threedr3am add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
vnhacker1337 add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
WangYihang add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
web-malware-collection-13-06-2012 Update c99.txt 2017-05-14 23:39:57 +08:00
webshellpub add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
wsMemShell add wsmemshell 2022-07-26 13:09:53 +08:00
www-7jyewu-cn Update DOC_ZIBSZXBIEG.php 2018-07-25 21:27:17 +08:00
xakep-shells reupdate xakepshell 2014-05-18 09:06:34 +08:00
xl7dev add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
ysrc add some submodule webshell project to this project 2020-09-14 13:32:03 +08:00
.gitmodules Update .gitmodules 2022-08-05 23:29:24 +08:00
_config.yml Set theme jekyll-theme-hacker 2020-04-04 16:22:03 +08:00
bt_yincang_shell.md Create bt_yincang_shell.md 2020-08-29 14:59:27 +08:00
bypass.md Create bypass.md 2020-08-22 19:22:26 +08:00
LICENSE Create LICENSE 2022-08-01 23:31:11 +08:00
other shell repository.md Update other shell repository.md 2020-09-07 23:30:54 +08:00
php_niu_3.php Create php_niu_3.php 2017-04-19 22:32:18 +08:00
proxy.py add proxy.py 2021-08-15 16:34:22 +08:00
README.md Update README.md 2022-08-08 22:39:13 +08:00
README_EN.md Update README_EN.md 2021-10-09 07:37:15 +08:00
SECURITY.md Update SECURITY.md 2021-11-10 16:06:08 +00:00
几种实战成功过的webshell的免杀方式.md Create 几种实战成功过的webshell的免杀方式.md 2022-08-05 23:10:13 +08:00

README_EN.md

webshell 简体中文

This is a webshell collection project

Give someone a rose, there is a fragrance in your hand
if you download this project, please also submit a shell

This project covers various common scripts

Such as: asp, aspx, php, jsp, pl, py

If you submit a webshell, please do not change the name and password

Note: There is no guarantee whether there could be a backdoor in a shell, but I will never add a backdoor deliberately when uploading by myself

Please dont add a backdoor if you submit

If you find a backdoor code, please create an issue immediately!

The tools provided by this project are forbidden to engage in illegal activities. This project is for testing purposes only. All the consequences caused by it have nothing to do with me.

Expanding a project

  1. webshell-venom
  2. Kill-free webshell unlimited generation tool
  3. Kill-free webshell unlimited generation tool (Kill-free one sentence generation|Kill-free D shield|Kill-free security dog guard God Hippo check and kill everything waf)
  4. Author : yzddmr6
  5. Please identify yourself

other webshell project (update 2020-09-14)

  1. xl7dev/WebShell
  2. JohnTroony/php-webshells
  3. BlackArch/webshells
  4. LandGrey/webshell-detect-bypass
  5. JoyChou93/webshell
  6. bartblaze/PHP-backdoors
  7. WangYihang/Webshell-Sniper
  8. threedr3am/JSP-Webshells
  9. DeEpinGh0st/PHP-bypass-collection
  10. lcatro/PHP-WebShell-Bypass-WAF
  11. ysrc/webshell-sample
  12. tanjiti/webshellSample
  13. webshellpub/awsome-webshell
  14. tdifg/WebShell
  15. malwares/WebShell
  16. lhlsec/webshell
  17. oneoneplus/webshell
  18. vnhacker1337/Webshell
  19. backlion/webshell

By the way, we are pushing a wave of website management tools

  1. Chinese Kitchen Knife
  2. Cknife
  3. Altman
  4. xise
  5. Weevely
  6. quasibot
  7. Webshell-Sniper
  8. 蚁剑 antSword
  9. 冰蝎 Behinder
  10. webacoo
  11. 哥斯拉 Godzilla
  12. PhpSploit
  13. The above rankings are in no particular order

Author tennc

http://tennc.github.io/webshell

license : GPL v3

Download link

Check github releases. Latest:

https://github.com/tennc/webshell/releases

Thank you to JetBrains for providing an OSS development license for their products