What is Hiphp? The HIPHP BackDoor is an open-source tool that allows for remote control of websites...
Web Maintaining Access
Kraken – a modular multi-language webshell coded by @secu_x11 Support On the one hand, Kraken is supported...
ModSecurity Backdoor This is a proof-of-concept of malicious software running inside of ModSecurity WAF. The software has...
DFShell D3Ext’s Forwarded Shell it’s a python3 script which use mkfifo to simulate a shell into the victim...
MSMAP Msmap is a Memory WebShell Generator. Compatible with various Containers, Components, Encoder, WebShell / Proxy / Killer, and...
Apache Tomcat webshell application for RCE A webshell application and interactive shell for pentesting Apache Tomcat servers....
WordPress webshell plugin for RCE A webshell plugin and interactive shell for pentesting a WordPress website. Features...
presshell – Quick & dirty WordPress Command Execution Shell Execute shell commands on your wordpress server. The...
YAPS – Yet Another PHP Shell As the name reveals, this is yet another PHP reverse shell, one more among hundreds...
Rome WebShell A powerful and delightful PHP WebShell This is a lightweight PHP webshell, using only vanilla JavaScript...
slopShell php webshell For this shell to work, you need 2 things, a victim that allows php...
Gel4y Mini Shell Backdoor Gel4y Webshell is a backdoor built using the PHP programming language in a...
wsh wsh (pronounced woosh) is a web shell generator and command-line interface. This started off as just...
Bantam bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication, and...
IIS Raid IS Raid is a native IIS module that abuses the extendibility of IIS to backdoor...