From 531a84e147e580ded843ce4ce851cf74324f48a6 Mon Sep 17 00:00:00 2001
From: nil0x42 <nil0x42@users.noreply.github.com>
Date: Wed, 26 Aug 2020 16:44:37 +0000
Subject: [PATCH] Add `phpsploit` (C2 framework via PHP oneliner)

Add phpsploit tool (https://github.com/nil0x42/phpsploit):
Full-featured C2 framework which silently persists on webserver via evil PHP oneliner, with a complete asrenal of post-exploitation & privesc features

PhpSploit is a well-known advanced & stealth PHP backdoor for persistence & privesc
---
 tools.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/tools.md b/tools.md
index 45a3278..949d896 100644
--- a/tools.md
+++ b/tools.md
@@ -29,6 +29,7 @@ Name | Description
 [XSStrike](https://github.com/UltimateHackers/XSStrike)  | XSStrike is a program which can fuzz and bruteforce parameters for XSS. It can also detect and bypass WAFs.
 [SubFinder](https://github.com/subfinder/subfinder) | Subdomain discovery tool for use on web application engagements. SubFinder is a subdomain discovery tool that discovers valid subdomains for any target using passive online sources.
 [VHostScan](https://github.com/codingo/VHostScan) | A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages.
+[PhpSploit](https://github.com/nil0x42/phpsploit) | Full-featured C2 framework which silently persists on webserver via evil PHP oneliner, with a complete asrenal of post-exploitation & privesc features.