{"id":48931497,"url":"https://github.com/pegasusmetasec/rce-pegasus","last_synced_at":"2026-04-17T09:05:14.051Z","repository":{"id":351841343,"uuid":"1212717539","full_name":"PegasusMetaSec/RCE-PEGASUS","owner":"PegasusMetaSec","description":"🦅 PEGASUS RCE - Fly Through WAF | WordPress Mass Exploiter | PHP Filter Chain Magic","archived":false,"fork":false,"pushed_at":"2026-04-16T19:11:17.000Z","size":2020,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-16T19:25:55.643Z","etag":null,"topics":["rce","rce-classic-celgene-research","rce-exploit","rce-exploits","rce-protection","wp-plugin","wpf-application"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/PegasusMetaSec.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-04-16T16:56:50.000Z","updated_at":"2026-04-16T19:11:21.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/PegasusMetaSec/RCE-PEGASUS","commit_stats":null,"previous_names":["pegasusmetasec/rce-pegasus"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/PegasusMetaSec/RCE-PEGASUS","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PegasusMetaSec%2FRCE-PEGASUS","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PegasusMetaSec%2FRCE-PEGASUS/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PegasusMetaSec%2FRCE-PEGASUS/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PegasusMetaSec%2FRCE-PEGASUS/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/PegasusMetaSec","download_url":"https://codeload.github.com/PegasusMetaSec/RCE-PEGASUS/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PegasusMetaSec%2FRCE-PEGASUS/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31922408,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-16T18:22:33.417Z","status":"online","status_checked_at":"2026-04-17T02:00:06.879Z","response_time":62,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["rce","rce-classic-celgene-research","rce-exploit","rce-exploits","rce-protection","wp-plugin","wpf-application"],"created_at":"2026-04-17T09:05:13.108Z","updated_at":"2026-04-17T09:05:14.046Z","avatar_url":"https://github.com/PegasusMetaSec.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n\n\u003cimg width=\"1024\" height=\"1024\" alt=\"WhatsApp Image 2026-04-17 at 00 10 23\" src=\"https://github.com/user-attachments/assets/8b9a40d2-58ed-4161-9acf-28c189c8dd66\" /\u003e\n\n### *WordPress Backup Backup Plugin - Remote Code Execution Exploit*\n\n[![Version](https://img.shields.io/badge/version-1.0-blue.svg)](https://github.com/yourusername/pegasus-rce)\n[![Python](https://img.shields.io/badge/python-3.7+-green.svg)](https://www.python.org/downloads/)\n[![License](https://img.shields.io/badge/license-MIT-red.svg)](LICENSE)\n[![Status](https://img.shields.io/badge/status-stable-brightgreen.svg)]()\n\n\u003c/div\u003e\n\n---\n\n## 📋 Table of Contents\n\n- [Overview](#-overview)\n- [Features](#-features)\n- [Prerequisites](#-prerequisites)\n- [Installation](#-installation)\n- [Usage](#-usage)\n- [How It Works](#-how-it-works)\n- [Technical Details](#-technical-details)\n- [Configuration](#-configuration)\n- [Disclaimer](#-disclaimer)\n- [License](#-license)\n- [Contributing](#-contributing)\n\n---\n\n## 🎯 Overview\n\n**PEGASUS RCE** is a sophisticated penetration testing tool that exploits a Remote Code Execution vulnerability in the **WordPress Backup Backup plugin**. The tool leverages advanced PHP filter chain techniques to achieve arbitrary code execution on vulnerable WordPress installations.\n\n\u003e ⚠️ **IMPORTANT**: This tool is intended for authorized security testing and educational purposes only. Always obtain proper permission before testing any system.\n\n\n\u003cimg width=\"1919\" height=\"917\" alt=\"Screenshot 2026-04-17 000156\" src=\"https://github.com/user-attachments/assets/23ca2d2b-3a87-4e5b-8e64-8a7a17a27e3d\" /\u003e\n\n---\n\n## ✨ Features\n\n| Feature | Description |\n|---------|-------------|\n| 🚀 **Multi-threading** | Concurrent scanning with up to 75 threads |\n| 🔧 **PHP Filter Chains** | Advanced encoding bypass techniques |\n| 🎲 **Randomized Payloads** | Dynamic filename generation to avoid detection |\n| 🌈 **Colored Output** | Real-time visual feedback with colorama |\n| 📁 **Results Export** | Automatic saving of successful shells |\n| 🔄 **User-Agent Rotation** | Bypass basic WAF rules |\n| 🛡️ **SSL Bypass** | Ignore SSL certificate validation |\n| ⏱️ **Timeout Handling** | Prevent hanging requests |\n\n---\n\n\n# 💰 Premium Access – Bayar dengan Bitcoin atau Saweria\n\nHalaman pembayaran sederhana untuk menerima donasi atau akses premium via **Bitcoin** dan **Saweria**.\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://saweria.co/pegasustrading\" target=\"_blank\"\u003e\n    \u003cimg src=\"https://img.shields.io/badge/Saweria-F2C94C?style=for-the-badge\u0026logo=ko-fi\u0026logoColor=black\" alt=\"Bayar dengan Saweria\" width=\"200\"\u003e\n  \u003c/a\u003e\n    \n  \u003ca href=\"bc1prfu3p2pqqk79xp3xk5tau2kmhv4ddzkqc456nhpzjhmwyrf093jsyp2lrc\"\u003e\n    \u003cimg src=\"https://img.shields.io/badge/Bitcoin-F7931A?style=for-the-badge\u0026logo=bitcoin\u0026logoColor=white\" alt=\"Bayar dengan Bitcoin\" width=\"200\"\u003e\n  \u003c/a\u003e\n\u003c/p\u003e\n\n\n\n\n\nhttps://github.com/user-attachments/assets/1441100c-3e39-45b6-8d36-19d69ac994a9\n\n\n\n\n---\n\n## 📦 Prerequisites\n\nBefore using PEGASUS RCE, ensure you have the following installed:\n\n```bash\n# Python 3.7 or higher\npython --version\n\n# Required Python packages\npip install requests\npip install colorama\npip install urllib3\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpegasusmetasec%2Frce-pegasus","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpegasusmetasec%2Frce-pegasus","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpegasusmetasec%2Frce-pegasus/lists"}