| aesshell |
0.7 |
A backconnect shell for Windows and Unix written in python and uses AES in CBC mode in conjunction with HMAC-SHA256 for secure transport. |
|
| azazel |
15.a41fbb5 |
A userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. |
|
| backcookie |
51.6dabc38 |
Small backdoor using cookie. |
|
| backdoor-factory |
210.0c53045 |
Patch win32/64 binaries with shellcode. |
|
| backdoorme |
308.f9755ca |
A powerful utility capable of backdooring Unix machines with a slew of backdoors. |
|
| backdoorppt |
88.d0e7f91 |
Transform your payload.exe into one fake word doc (.ppt). |
|
| cymothoa |
1 |
A stealth backdooring tool, that inject backdoor's shellcode into an existing process. |
|
| debinject |
43.d884309 |
Inject malicious code into *.debs. |
|
| donut |
529.47758d7 |
Generates x86, x64 or AMD64+x86 P.I. shellcode loading .NET Assemblies from memory. |
|
| dr0p1t-framework |
44.db9bc2d |
A framework that creates a dropper that bypass most AVs, some sandboxes and have some tricks. |
|
| dragon-backdoor |
7.c7416b7 |
A sniffing, non binding, reverse down/exec, portknocking service Based on cd00r.c. |
|
| eggshell |
157.eaeeea7 |
iOS/macOS/Linux Remote Administration Tool. |
|
| enyelkm |
1.2 |
Rootkit for Linux x86 kernels v2.6. |
|
| evilpdf |
5.43696a8 |
Embedding executable files in PDF Documents. |
|
| exe2image |
1.1 |
A simple utility to convert EXE files to JPEG images and vice versa. |
|
| gobd |
82.3bbd17c |
A Golang covert backdoor. |
|
| harness |
19.ed2a6aa |
Interactive remote PowerShell Payload. |
|
| hotpatch |
90.fd2baf1 |
Hot patches executables on Linux using .so file injection. |
|
| icmpsh |
12.82caf34 |
Simple reverse ICMP shell. |
|
| jynx2 |
2.0 |
An expansion of the original Jynx LD_PRELOAD rootkit |
|
| k55 |
86.b3c4aa9 |
Linux x86_64 Process Injection Utility. |
|
| kimi |
28.e7cafda |
Script to generate malicious debian packages (debain trojans). |
|
| kwetza |
26.0e50272 |
Python script to inject existing Android applications with a Meterpreter payload. |
|
| ld-shatner |
4.5c215c4 |
ld-linux code injector. |
|
| linux-inject |
100.268d4e4 |
Tool for injecting a shared object into a Linux process. |
|
| meterssh |
18.9a5ed19 |
A way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. |
|
| microsploit |
9.441e132 |
Fast and easy create backdoor office exploitation using module metasploit packet, Microsoft Office, Open Office, Macro attack, Buffer Overflow. |
|
| ms-sys |
2.8.0 |
A tool to write Win9x- master boot records (mbr) under linux - RTM! |
|
| nxcrypt |
32.6ae06b5 |
Python backdoor framework. |
|
| phishery |
14.5743953 |
An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector. |
|
| pwncat |
0.1.2 |
Bind and reverse shell handler with FW/IDS/IPS evasion, self-inject and port-scanning. |
|
| pyrasite |
2.0 |
Code injection and introspection of running Python processes. |
|
| revsh |
215.174e309 |
A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities. |
|
| rrs |
1.70 |
A reverse (connecting) remote shell. Instead of listening for incoming connections it will connect out to a listener (rrs in listen mode). With tty support and more. |
|
| rubilyn |
0.0.1 |
64bit Mac OS-X kernel rootkit that uses no hardcoded address to hook the BSD subsystem in all OS-X Lion & below. It uses a combination of syscall hooking and DKOM to hide activity on a host. |
|
| shellinabox |
428.98e6eeb |
Implements a web server that can export arbitrary command line tools to a web based terminal emulator. |
|
| shootback |
83.cab462c |
A reverse TCP tunnel let you access target behind NAT or firewall. |
|
| silenttrinity |
293.08b1c61 |
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR. |
|
| syringe |
12.79a703e |
A General Purpose DLL & Code Injection Utility. |
|
| trixd00r |
0.0.1 |
An advanced and invisible userland backdoor based on TCP/IP for UNIX systems. |
|
| tsh |
0.6 |
An open-source UNIX backdoor that compiles on all variants, has full pty support, and uses strong crypto for communication. |
|
| tsh-sctp |
2.850a2da |
An open-source UNIX backdoor. |
|
| u3-pwn |
2.0 |
A tool designed to automate injecting executables to Sandisk smart usb devices with default U3 software install. |
|
| unicorn-powershell |
212.5421d46 |
A simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. |
|
| villain |
V2.2.1.r0.gb14f685 |
C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features and share them among connected sibling servers. |
|
| vlany |
255.9ef014a |
Linux LD_PRELOAD rootkit (x86 and x86_64 architectures). |
|
| webacoo |
0.2.3 |
Web Backdoor Cookie Script-Kit. |
|
| webspa |
0.8 |
A web knocking tool, sending a single HTTP/S to run O/S commands. |
|