#Post-exploitation
Showing 60 of 75 repositories tagged #post-exploitation, ranked by stars
A collection of hacking tools, resources and references to practice ethical hacking.
fsociety Hacking Tools Pack – A Penetration Testing Framework
An open-source post-exploitation framework for students, researchers and developers.
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Adversary simulation and Red teaming platform with AI
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
An evil RAT (Remote Administration Tool) for macOS / OS X.
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
C2/post-exploitation framework
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
PyExfil — Python 3 toolkit for researching and stress-testing data exfiltration techniques across network, physical, and steganographic channels. For red team simulation and DLP detection testing.
Load shellcode into a new process
ADB For Hackers (:
SeaShell Framework is an iOS post-exploitation framework that enables you to access the device remotely, control it and extract sensitive information.
A cross platform C2/post-exploitation framework.
新一代Webshell管理器,兼容蚁剑与冰蝎的PHP webshell
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
Automating Host Exploitation with AI
Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
Multiplayer pivoting solution
Python AV Evasion Tools
A C2 post-exploitation framework
Network Pivoting Toolkit
Chrome Keylogger Extension | Post Exploitation Tool
Post-exploitation tool to cover your tracks on a compromised machine (beta)
A tool that allows you to search for vulnerable android devices across the world and exploit them.
EVA is an AI-assisted penetration testing agent that enhances offensive security workflows by providing structured attack guidance, contextual analysis, and multi-backend AI integration.
PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.
[ BOF-LAUNCHER ] -> an API for loading, executing and in-memory masking BOFs on Windows and Linux for use in C/Zig/Go/Rust agents/implants. [ Z-BEAC0N ] -> a custom-written stage-1 (aka pre-C2) solution engineered with a small footprint, stealth and modularity in mind. [ DEVELOPED BOFS ] -> cross-platform (12), Linux-only (10), Win-only (2)
Keylogging server and client that uses DNS tunneling/exfiltration to transmit keystrokes through firewalls.
:computer::warning: A curated collection of awesome malware, botnets, and other post-exploitation tools.
RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
Linux post exploitation privilege escalation enumeration
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
👾 a decade of resources for security researchers: pentesting, CTF, wargames, cryptography, forensics, reverse engineering, IoCs, botnets, cloud hacking, linux hacking, steganography, vulnerabilities, etc.
A Framework meant for the exploitation of iOS devices.
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
Android-BackDoor is a python and shell script that simplifies the process of adding a backdoor to any Android APK file. It also exploits the Android Debug Bridge to remotely access an Android device.
unix SSH post-exploitation 1337 tool
A visual reference of 118 essential red team tools, frameworks & standards, organized like a periodic table. Includes a printable PDF version.
This is An Offensive Hacking Tool which can be used by hackers and for penetration testing purposes. Hack Responsibly!!!!!!!
Collection of script templates to create infinite UAC prompts forcing a user to run as admin ⚠
A curated list of tools useful within the field of cyber security, for both blue and red team operations.
PostShell - Post Exploitation Bind/Backconnect Shell
Simple Powershell Http shell With WEB UI
A Visual Studio Code Extension agent for Mythic C2
A powerful Go-based multi-shell handler for managing multiple reverse shell connections simultaneously with features like shell type detection, background management, command broadcasting, and real-time interaction.
A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).
A windows post exploitation tool that contains a lot of features for information gathering and more.
A shell script that automatically performs a series of *NIX enumeration tasks.
Curated precompiled Windows and Linux binaries for authorized pentesting, red teaming, Active Directory testing, privilege escalation labs, and post-exploitation research.
The Clipboard Hijacker Payload aims to monitor, capture, and potentially manipulate clipboard data on a target machine.
Advanced Keylogger / Info Grabber written in C++.
👽 Metasploit is the most widely used open-source exploitation framework. Learn how to use it and unlock its full potential.