From 531a84e147e580ded843ce4ce851cf74324f48a6 Mon Sep 17 00:00:00 2001 From: nil0x42 Date: Wed, 26 Aug 2020 16:44:37 +0000 Subject: [PATCH] Add `phpsploit` (C2 framework via PHP oneliner) Add phpsploit tool (https://github.com/nil0x42/phpsploit): Full-featured C2 framework which silently persists on webserver via evil PHP oneliner, with a complete asrenal of post-exploitation & privesc features PhpSploit is a well-known advanced & stealth PHP backdoor for persistence & privesc --- tools.md | 1 + 1 file changed, 1 insertion(+) diff --git a/tools.md b/tools.md index 45a3278..949d896 100644 --- a/tools.md +++ b/tools.md @@ -29,6 +29,7 @@ Name | Description [XSStrike](https://github.com/UltimateHackers/XSStrike) | XSStrike is a program which can fuzz and bruteforce parameters for XSS. It can also detect and bypass WAFs. [SubFinder](https://github.com/subfinder/subfinder) | Subdomain discovery tool for use on web application engagements. SubFinder is a subdomain discovery tool that discovers valid subdomains for any target using passive online sources. [VHostScan](https://github.com/codingo/VHostScan) | A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages. +[PhpSploit](https://github.com/nil0x42/phpsploit) | Full-featured C2 framework which silently persists on webserver via evil PHP oneliner, with a complete asrenal of post-exploitation & privesc features.