Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-malware
:computer::warning: A curated collection of awesome malware, botnets, and other post-exploitation tools.
https://github.com/fabacab/awesome-malware
Last synced: 5 days ago
JSON representation
-
Uncategorized
-
Uncategorized
- theZoo - Repository of live malwares for your own joy and pleasure, created to make the possibility of malware analysis open and available to the public.
- Empire - Pure PowerShell post-exploitation agent built on cryptologically-secure communications and a flexible architecture.
- SecLists Web Shells - Examples of core Web shell functionality in PHP, JSP, ASP(X), ColdFusion, and more.
- Idisagree - Control remote computers using Discord bot and Python 3.
- Browser Exploitation Framework (BeEF) - Command and control server for delivering exploits to commandeered Web browsers.
- Merlin - Cross-platform post-exploitation HTTP/2 command and control server and agent written in golang.
- SILENTTRINITY - Asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR.
- CheckPlease - Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.
- EvilOSX - Modular RAT that uses numerous evasion and exfiltration techniques out-of-the-box.
- Pupy - Low-footprint, cross-platform (Windows, Linux, macOS, Android) RAT featuring all-in-memory execution guideline written in Python.
- RedPeanut - Small RAT developed in .Net Core 2 and its agent in .Net 3.5/4.0, weaponized with several additional utilities.
- Slackor - Golang implant that uses Slack as a command and control server.
- Twittor - Stealthy Python based backdoor that uses Twitter (Direct Messages) as a command and control server.
- Adore-NG - Rootkit adapted for the 2.6 and 3.x Linux kernels.
- AdoreForAndroid - Adore rootkit ported to Android.
- Diamorphine - LKM rootkit for Linux Kernels 2.6.x, 3.x, and 4.x.
- Masochist - Framework for creating XNU based rootkits useful in OS X and iOS security research.
- Vector-EDK - Commercial UEFI rootkit illegally sold by Hacking Team to numerous governments, leaked by hacker Phineas Phisher in 2015, and the basis of the [MosaicRegressor rootkit](https://securelist.com/mosaicregressor/98849/).
- vlany - Linux `LD_PRELOAD` rootkit.
- BlackArch Webshells Collection - Various webshells that can be installed as a package on BlackArch Linux.
- DAws - Advanced Web shell.
- PHP-backdoors - Collection of PHP backdoors, for educational and/or testing purposes only.
- PHP Exploit Scripts - Collection of PHP exploit scripts (often but not necessarily always backdoors or web shells), found when investigating hacked servers.
- PHP WebShells collection - Repository of common PHP Web shells, somewhat dated.
- PhpSploit - Remote control framework, aiming to provide a stealth interactive shell-like connection over HTTP between client and web server.
- SharPyShell - Tiny and obfuscated ASP.NET webshell for C# web applications.
- Weevely - Extensible PHP Web shell with numerous out-of-the-box modules.
- Bella - Pure Python post-exploitation data mining and remote administration tool for macOS.
-
Categories
Sub Categories
Keywords
post-exploitation
6
pentesting
5
webshell
4
backdoor
4
python
3
command-and-control
3
c2
3
hacking
3
python3
3
linux
3
rat
2
reverse-shell
2
macos
2
rootkit
2
stealth
2
security-tools
2
redteam
2
pentest
2
php
2
php-backdoor
2
remote-admin-tool
2
shell
2
advanced-persistent-threat
2
c
2
golang
2
mac-os
1
penetration-testing-tools
1
penetration-testing
1
meterpreter
1
payload
1
windows
1
pupy
1
reflective-injection
1
bot
1
control
1
discord
1
remote
1
agent
1
http2
1
boolang
1
c-sharp
1
dotnet
1
dotnet-dlr
1
dotnet-script
1
ironpython
1
red-teams
1
mac
1
macosx
1
osx
1
android
1