{"id":13845499,"url":"https://github.com/blueudp/AF-ShellHunter","last_synced_at":"2025-07-12T02:31:38.852Z","repository":{"id":216002076,"uuid":"407319919","full_name":"blueudp/AF-ShellHunter","owner":"blueudp","description":"Shell hunter for AF","archived":false,"fork":false,"pushed_at":"2021-10-10T18:38:25.000Z","size":311,"stargazers_count":35,"open_issues_count":7,"forks_count":7,"subscribers_count":4,"default_branch":"python3_dev","last_synced_at":"2024-08-05T17:44:39.060Z","etag":null,"topics":["deface","fraud","hacking","phishing","shell","webshell"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/blueudp.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2021-09-16T21:28:56.000Z","updated_at":"2024-02-17T16:21:40.000Z","dependencies_parsed_at":"2024-01-07T22:48:52.626Z","dependency_job_id":"ec4ec9bf-29e9-4cea-b6df-b0f40b097df1","html_url":"https://github.com/blueudp/AF-ShellHunter","commit_stats":null,"previous_names":["blueudp/af-shellhunter"],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blueudp%2FAF-ShellHunter","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blueudp%2FAF-ShellHunter/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blueudp%2FAF-ShellHunter/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blueudp%2FAF-ShellHunter/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/blueudp","download_url":"https://codeload.github.com/blueudp/AF-ShellHunter/tar.gz/refs/heads/python3_dev","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225784675,"owners_count":17523690,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["deface","fraud","hacking","phishing","shell","webshell"],"created_at":"2024-08-04T17:03:26.296Z","updated_at":"2024-11-21T18:32:02.961Z","avatar_url":"https://github.com/blueudp.png","language":"Python","readme":"# AF-ShellHunter\n\n![adshellhunter](https://user-images.githubusercontent.com/41192980/133873080-1cf088a6-f401-4e01-8171-b28898206e1a.png)\n\n## AF-ShellHunter: Auto shell lookup\n\nAF-ShellHunter its a script designed to automate the search of WebShell's in AF Team\n\n# How to\n\n ```\n \n pip3 install -r requirements.txt\n python3 shellhunter.py --help\n \n ```\n\n# Basic Usage\n\nYou can run shellhunter in two modes\n\n* **--url -u** When scanning a single url\n* **--file -f** Scanning multiple URLs at once\n\nExample searching webshell with burpsuite proxy, hiding string \"404\" with a size between 100 and 1000 chars\n\n```\n┌──(blueudp㉿xxxxxxxx)-[~/AF-ShellHunter]\n└─$ python3 shellhunter.py -u https://xxxxxxxxxx -hs \"404\" -p burp  --greater-than 100 --smaller-than 1000                                                                                             \nRunning AF-Team ShellHunt 1.1.0\n\n        URL:    https://xxxxxxxxxx\n        Showing only:   200, 302\n        Threads:        20\n        Not showing coincidence with:   404\n        Proxy:  burp\n        Greater than: 100\n        Smaller than: 1000\nFound https://xxxxxxxxxx/system.php len: 881\n\n```\n\n# File configuration for multiple sites\n\n[phishing_list](user_files/phishing_list.txt)\n\n```\n# How to?\n# set country block with [country], please read user_files/config.txt\n\n# 'show-response-code \"option1\" \"option2\"' -\u003e show responses with those status codes, as -sc\n# 'show-string' -\u003e show match with that string, as -ss\n# 'show-regex' -\u003e show match with regex, as -sr\n\n# use 'not' for not showing X in above options, as -h[option]\n\n# 'greater-than' -\u003e Show response greater than X, as -gt ( --greater-than )\n# 'smaller-than' -\u003e  Show responses smaller than X, as -st ( --smaller-than )\n\n\n# Example searching webshell with BurpSuite proxy. 302, 200 status code, not showing results w/ 'página en mantenimiento' with size between 100 and 1000 chars\n\n[burp]\nhttps://banco.phishing-\u003eshow-response-code \"302\" \"200\", not show-string \"página en mantenimiento\", greater-than 100, smaller-than 1000\n\n[noproxy]\nbanco.es-\u003e # ShellHunt will add 'http://\n```\n\n# Setting your proxies and custom headers\n\n[config.txt](user_files/config.txt)\n\n```\n[HEADERS]  # REQUESTS CUSTOM HEADERS, ADD 'OPTION: VALUE'\nUser-Agent? Mozilla/5.0 (Linux; Android 8.0.0; SM-G960F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.84 Mobile Safari/537.36\nReferer? bit.ly/THIS_is_PHISHING  # Bypass referer protection\n\n[PROXIES]\nburp? https://127.0.0.1:8080,http://127.0.0.1:8080\n```\n\n# Other features\n\n1. Filter by [regex](https://regex101.com/)\n2. Filter by string\n3. Filter by [HTTP Status code](https://developer.mozilla.org/es/docs/Web/HTTP/Status)\n4. Filter by length\n4. Custom [Headers](https://developer.mozilla.org/es/docs/Web/HTTP/Headers)\n5. Custom proxy or proxy block for URL file\n6. Multithreading ( custom workers number )\n\n```\n                                                              .-\"; ! ;\"-.\n        ----.                                               .'!  : | :  !`.\n        \"   _}                                             /\\  ! : ! : !  /\\\n        \"@   \u003e                                            /\\ |  ! :|: !  | /\\\n        |\\   7                                           (  \\ \\ ; :!: ; / /  )\n        / `--                                           ( `. \\ | !:|:! | / .' )\n            ,-------,****                               (`. \\ \\ \\!:|:!/ / / .')\n  ~        \u003eo\u003c  \\---------o{___}-            =\u003e          \\ `.`.\\ |!|! |/,'.' /\n /  |  \\  /  ________/8'                                 `._`.\\\\\\!!!// .'_.'\n |  |        /        \"                                      `.`.\\\\|//.'.'\n |  /     |                                                   |`._`n'_.'|\n                                                              \"----^----\"\n```\n","funding_links":[],"categories":["Python"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fblueudp%2FAF-ShellHunter","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fblueudp%2FAF-ShellHunter","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fblueudp%2FAF-ShellHunter/lists"}