{"id":21767155,"url":"https://github.com/ezyrockstar/ShellKill","last_synced_at":"2025-10-07T20:31:42.798Z","repository":{"id":262293741,"uuid":"886803591","full_name":"Fear2o/ShellKill","owner":"Fear2o","description":"an advanced python-based web shell uploader","archived":false,"fork":false,"pushed_at":"2025-01-04T19:24:10.000Z","size":3363,"stargazers_count":4,"open_issues_count":0,"forks_count":1,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-01-04T20:24:42.011Z","etag":null,"topics":["bypass-shell","bypass-waf","cli","cybersecurity","exploit","hacking","payload","penetration-testing","python","python-tool","python3","rce","rce-exploit","security","security-tool","web-shell","web-shell-upload"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Fear2o.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":null,"patreon":null,"open_collective":null,"ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"lfx_crowdfunding":null,"polar":null,"buy_me_a_coffee":null,"thanks_dev":null,"custom":["https://paypal.me/Feario"]}},"created_at":"2024-11-11T16:25:25.000Z","updated_at":"2025-01-04T19:24:14.000Z","dependencies_parsed_at":"2025-01-04T20:39:02.137Z","dependency_job_id":null,"html_url":"https://github.com/Fear2o/ShellKill","commit_stats":null,"previous_names":["fear2o/shellkill"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Fear2o%2FShellKill","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Fear2o%2FShellKill/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Fear2o%2FShellKill/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Fear2o%2FShellKill/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Fear2o","download_url":"https://codeload.github.com/Fear2o/ShellKill/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":235655517,"owners_count":19024628,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bypass-shell","bypass-waf","cli","cybersecurity","exploit","hacking","payload","penetration-testing","python","python-tool","python3","rce","rce-exploit","security","security-tool","web-shell","web-shell-upload"],"created_at":"2024-11-26T13:22:39.976Z","updated_at":"2025-10-07T20:31:42.318Z","avatar_url":"https://github.com/Fear2o.png","language":"Python","funding_links":["https://paypal.me/Feario"],"categories":[],"sub_categories":[],"readme":"# 🐚 **ShellKill** 💀🔥\n\n## Overview 📖\n**ShellKill** is a Python tool designed to upload a **web shell** to a target server and trigger it using various **evasion techniques** to bypass file upload restrictions. A **web shell** is a script that provides remote access and control over a web server. By uploading a web shell, an attacker can execute commands on the target server, manipulate files, and potentially escalate privileges.\n\nThe tool also supports **automatic retries**, file upload validation, and vulnerability scanning for common web vulnerabilities such as **File Upload issues, LFI/RFI, XSS**, and SQL Injection.\n\n\u003e **Warning:** This tool can potentially cause significant damage if misused. Only use it in controlled environments where explicit permission has been granted. 🚨\n\n![GitHub stars](https://img.shields.io/github/stars/Fear2o/ShellKill?style=social)\n![Build Status](https://img.shields.io/github/workflow/status/Fear2o/ShellKill/CI)\n![License](https://img.shields.io/github/license/Fear2o/ShellKill)\n![Contributors](https://img.shields.io/github/contributors/Fear2o/ShellKill)\n\n### 🚀 **Key Features:**\n\n- **Shell File Upload**: Easily upload a web shell to a target server via a specified URL. ⚡\n- **Retries and Error Handling**: Automatic retries on failure with detailed error logging for easy debugging. 🔄\n- **Evasion Techniques**: Bypass file upload restrictions using creative methods like file renaming and base64 encoding. 🛡️\n- **Vulnerability Scanning**: Automatically scan the target URL for common vulnerabilities like **File Upload issues**, **LFI/RFI**, **XSS**, and **SQL Injection**. 🔍\n- **Customizable**: Configure retry count, proxies, and timeout settings with ease. 🛠️\n\n---\n\n## 🚨 **Prerequisites** 🛠️\n\nBefore you begin, make sure you have:\n\n- **Python 3.6+**: WebShellUploader is built for Python 3.6 and above. 🔑\n\n---\n\n## 📥 **Installation**\n\n1. **Clone into the repository**\n\n```python\ngit clone https://github.com/Fear2o/ShellKill\n```\n\n2. **Move to its directory**\n\n```bash\ncd ShellKill\n```\n\n\n## 📝 **Usage**\n\n### Command-Line Arguments 🎯\n\n- `target_url`: Target URL of the server you want to test. (e.g., `http://example.com`)\n- `shell_file_path`: Path to the web shell you want to upload. 🗂️\n- `upload_url`: The upload endpoint where the file should be uploaded. 📤\n- `--proxies`: Optional argument to specify proxies. (e.g., `--proxies http://127.0.0.1:8080`)\n- `--max_retries`: Set the maximum number of retries for the upload (default: `5`). 🔄\n- `--evasion_techniques`: Enable or disable evasion techniques. Default is `True`. 🕶️\n- `--timeout`: Set the timeout for requests in seconds (default: `10`). ⏳\n\n### 🖥️ **Example Command**\n\n```bash\npython ShellKill.py http://example.com /path/to/shell.php http://example.com/upload --max_retries 5 --evasion_techniques True --timeout 10\n```\n\n\n## 📊 Logging \u0026 Reports 📜\n\nAll actions performed by **ShellKill** are logged into a rotating log file named upload_log.txt. Here's an example of what the logs might look like:\n\n2024-11-10 12:34:56,789 - INFO - Target URL http://example.com is reachable.\n\n2024-11-10 12:35:00,123 - INFO - Shell file /path/to/shell.php is valid and readable.\n\n2024-11-10 12:35:05,456 - INFO - Attempting upload with renamed shell: shell_1234.php.\n\n2024-11-10 12:35:10,789 - ERROR - Request failed (Attempt 1): Timeout error.\n\n2024-11-10 12:35:15,123 - INFO - Shell uploaded successfully: /path/to/shell.php.\n![Example](https://github.com/Fear2o/ShellKill/blob/main/assets/Example.PNG)\n\n## 📈 How to Contribute 💡\n\nWe welcome contributions to **ShellKill!** If you find bugs, have ideas for features, or want to help improve the project, please feel free to:\n\n1. **Fork the repo 🍴**\n2. **Create a feature branch 🌱**\n3. **Submit a pull request 🚀**\nWe highly appreciate all contributions and feedback from the community!\n\n\n## ⭐ **Give It a Star!**\n\nIf you found this tool useful, please give it a ⭐ and **follow** for future updates. 🚀 Your support helps improve the tool and motivates the development of more awesome features! \n\n[Star this repository on GitHub](https://github.com/Fear2o/ShellKill) ⭐\n\n\n## **📌 Disclaimer ⚠️**\n\nThis tool is for **educational purposes only**. You must have **explicit permission** to test any web server. The author is not responsible for any illegal use or actions taken using this tool. **Use responsibly and ethically!** 💻\n\n\n## **📚 License 🛡️**\n\nThis project is licensed under the **MIT License** - see the [LICENSE](https://github.com/Fear2o/ShellKill/blob/main/LICENSE) \nfile for more details. 📝\n\n\n## **🔔 Stay Updated 📰**\n\n- Follow me on [GitHub](https://github.com/Fear2o) for the latest updates!\n\n- Join the discussion and contribute to making **ShellKill** even better. 👥\n\n### **🏅 Thank you for your support! 🙌**\nKeep hacking responsibly and stay awesome! 😎\n\n---\n\n*Crafted by Fear.io*\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fezyrockstar%2FShellKill","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fezyrockstar%2FShellKill","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fezyrockstar%2FShellKill/lists"}