https://github.com/commixproject/commix

Automated All-in-One OS Command Injection Exploitation Tool.
https://github.com/commixproject/commix

bugbounty command-injection commix detection exploitation open-source pentesting python takeover vulnerability-scanner

Last synced: 7 months ago
JSON representation

Automated All-in-One OS Command Injection Exploitation Tool.

Host: GitHub
URL: https://github.com/commixproject/commix
Owner: commixproject
License: other
Created: 2015-03-20T08:38:26.000Z (over 10 years ago)
Default Branch: master
Last Pushed: 2025-04-23T06:38:22.000Z (7 months ago)
Last Synced: 2025-04-23T07:31:23.764Z (7 months ago)
Topics: bugbounty, command-injection, commix, detection, exploitation, open-source, pentesting, python, takeover, vulnerability-scanner
Language: Python
Homepage: https://commixproject.com
Size: 6.72 MB
Stars: 5,245
Watchers: 157
Forks: 872
Open Issues: 8
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE.txt
- Code of conduct: .github/CODE_OF_CONDUCT.md

Awesome Lists containing this project

awesome-pentest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Web injection tools)
awesome-pentest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Penetration Testing Report Templates)
awesome-repositories - commixproject/commix - Automated All-in-One OS Command Injection Exploitation Tool. (Python)
awesome-ctf - Commix - Automated All-in-One OS Command Injection and Exploitation Tool. (Web)
awesome-web-security - commix - Automated All-in-One OS command injection and exploitation tool by [@commixproject](https://github.com/commixproject). (Tools / Command Injection)
awesome-pentest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Web injection tools)
awesome-bugbounty-tools - commix - Automated All-in-One OS command injection and exploitation tool. (Exploitation / Command Injection)
awesome-pentester - commix - Automated All-in-One OS Command Injection and Exploitation Tool (Tools:)
fucking-awesome-pentest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Web injection tools)
WebHackersWeapons - commix - in-One OS Command Injection Exploitation Tool.|![](https://img.shields.io/github/stars/commixproject/commix?label=%20)|[`exploit`](/categorize/tags/exploit.md)|![linux](/images/linux.png)![macos](/images/apple.png)![windows](/images/windows.png)[![Python](/images/python.png)](/categorize/langs/Python.md)| (Weapons / Tools)
awesome-termux-hacking - commix - Automated All-in-One OS command injection and exploitation tool..[![->](https://img.shields.io/github/stars/commixproject/commix.svg?style=social&label=Star&maxAge=2592000)](https://github.com/commixproject/commix/stargazers/) (Uncategorized / Uncategorized)
awesome-drupal - commixproject/commix
StarryDivineSky - commixproject/commix
qazbnm456-awesome-web-security - commix - Automated All-in-One OS command injection and exploitation tool by [@commixproject](https://github.com/commixproject). (Tools / Command Injection)
fucking-awesome-web-security - commix - Automated All-in-One OS command injection and exploitation tool by [@commixproject](https://github.com/commixproject). (Tools / Command Injection)
venom - `Commix` - Automated all-in-one operating system command injection and exploitation tool. (Web / Web Injection Tools)
awesome - commixproject/commix - Automated All-in-One OS Command Injection Exploitation Tool. (Python)
awesome-penetest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Web injection tools)
awesome-hacking-lists - commixproject/commix - Automated All-in-One OS Command Injection Exploitation Tool. (Python)
awesome-bbht - commix - Automated All-in-One OS command injection and exploitation tool. https://commixproject.com (Exploitation / Command Injection)
awesome-pentest - Commix - Automated all-in-one operating system command injection and exploitation tool. (Tools / Web Exploitation)
awesome-ctf - Commix - Automated All-in-One OS Command Injection and Exploitation Tool. (Web)
awesome-ctf-resources - Commix - Automated All-in-One OS Command Injection Exploitation Tool. (Web)
awesome-bbht - commix - Automated All-in-One OS command injection and exploitation tool. https://commixproject.com (Exploitation / Command Injection)
awesome-ctf - Commix - Automated All-in-One OS Command Injection and Exploitation Tool. (Web)
penetration-testing - Commix - Automated all-in-one operating system command injection and exploitation tool. (Web Exploitation / Web injection tools)

README

          


  

  


    

    

    

    

    

  


**Commix** (short for [**comm**]and [**i**]njection e[**x**]ploiter) is an open source penetration testing tool, written by **[Anastasios Stasinopoulos](https://github.com/stasinopoulos)** (**[@ancst](https://x.com/ancst)**), that automates the detection and exploitation of **[command injection](https://www.owasp.org/index.php/Command_Injection)** vulnerabilities.

![Screenshot](https://commixproject.com/images/background.png)

You can visit the [collection of screenshots](https://github.com/commixproject/commix/wiki/Screenshots) demonstrating some of the features on the wiki.

## Installation

You can download commix on any platform by cloning the official Git repository :

    $ git clone https://github.com/commixproject/commix.git commix

Alternatively, you can download the latest [tarball](https://github.com/commixproject/commix/tarball/master) or [zipball](https://github.com/commixproject/commix/zipball/master).

*__Note:__ **[Python](http://www.python.org/download/)** (version **2.6**, **2.7** or **3.x**) is required for running commix.*

## Usage

To get a list of all options and switches use:

    $ python commix.py -h

To get an overview of commix available options, switches and/or basic ideas on how to use commix, check **[usage](https://github.com/commixproject/commix/wiki/Usage)**, **[usage examples](https://github.com/commixproject/commix/wiki/Usage-Examples)** and **[filters bypasses](https://github.com/commixproject/commix/wiki/Filters-Bypasses)** wiki pages.

## Links

* User's manual: https://github.com/commixproject/commix/wiki

* Issues tracker: https://github.com/commixproject/commix/issues

## Translations

* [Farsi(Persian)](https://github.com/commixproject/commix/blob/master/doc/translations/README-fa-FA.md)

* [Greek](https://github.com/commixproject/commix/blob/master/doc/translations/README-gr-GR.md)

* [Indonesian](https://github.com/commixproject/commix/blob/master/doc/translations/README-idn-IDN.md)

* [Turkish](https://github.com/commixproject/commix/blob/master/doc/translations/README-tr-TR.md)

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/commixproject/commix

Awesome Lists containing this project

README