Tuesday, 3. April 2012
Building an HTTP shell with AES + Proxy Support in Python
Got a little bored today and decided to write a reverse HTTP shell in Python thats platform independent and supports AES encryption when passing information back and forth. So this works on Linux, OSX, and Windows. The shell also supports proxy settings as well. This Python shell will initiate a reverse connection out of the network and connect to the attacker machine via pure HTTP communications. It’s pretty straight forward on how it works. I’ve byte compiled the code so you do not need to have Python installed on the victim, it will simply run as a normal executable.

Download compiled shell.exe and all of the source code
https://www.secmaniac.com/files/encrypted_http_shell.zip

Permalink

 


Monday, 2. April 2012
WSO 2.5 Webshell
This utility provides a Web interface for remote operation c operating system and its service / daemon.
Opportunity Description / features:

Authorization for cookies
Server Information
File manager (copy, rename, move, delete, chmod, touch, creating files and folders)
View, hexview, editing, downloading,
uploading files
Working with zip archives (packing, unpacking) + compression tar.gz
Console
SQL Manager (MySql, PostgreSql)
Execute PHP code
Working with Strings + hash search online databases
Bindport and back-Connect (Perl)
Bruteforce FTP, MySQL, PgSQL
Search files, search text in files
Support for * nix-like and Windows systems
Antipoiskovik (check User-Agent, if a search engine then returns 404 error)
You can use AJAX
Small size. The boxed version is 22.8 Kb
Choice of encoding, which employs a shell.

Info
Default password: root
(if you want to change it change the auth_pass variable value with your md5 encoded password.
http://pastebin.com/Qra8yeWX

Permalink

 


Saturday, 31. March 2012
weevely - Stealth tiny web shell
Weevely is a stealth PHP web shell that simulate telnet-like connection. It is an essential tool for web application post exploitation, and could be used like an hidden backdoor and as a useful telnet-like console replacement to manage web accounts, even if hosted in free hosting services. Just generate and upload the "server" PHP code on the target web server, and run Weevely client locally to transmit shell commands.

Download
http://code.google.com/p/weevely/downloads/list

Permalink

 


Friday, 23. March 2012
GooDork - Linux
GooDork is a simple collection of python scripts designed to bring the power of google dorking straight to your command line.

Info
https://github.com/k3170makan/GooDork/wiki

Download
https://github.com/k3170makan/GooDork

Doxing A hosting server using GooDork
http://pastebin.com/VU7NArKL

Permalink

 


Monday, 19. March 2012
lshell - coded in Python
lshell is a shell coded in Python, that lets you restrict a user's environment to limited sets of commands, choose to enable/disable any command over SSH (e.g. SCP, SFTP, rsync, etc.), log user's commands, implement timing restriction, and more.

Download - Info
http://lshell.ghantoos.org/

Permalink

 


Thursday, 15. March 2012
Carbylamine PHP Encoder
Carbylamine PHP Encoder is a PHP Encoder for obfuscating/encoding PHP files so that antivirus detection signatures can be bypassed. High Security PHP Encoder Stops unauthorized personnel from reading, modifying and reverse engineering your code.

Download
http://pastebin.com/ac8r3q81

by
Prakhar Prasad

Permalink

 


12309.php - Webshell
12309.php is advanced webshell with the main aim at executing shell commands in all possible ways. it has some additional functions though.


Download
https://github.com/kairn/12309.php

Permalink

 


Friday, 9. March 2012
Symantec Norton AntiVirus 2006 All Platform Source Code
Typ:
Porno > Sonstiges
Dateien:
1
Größe:
1.07 GiB (1147711544 Bytes)
Tag(s):
Anonymous AntiSec LuLzSec
Qualität:
+5 / -0 (+5)
Hochgeladen:
2012-03-08 17:05:55 GMT
By:
Anonymous

Info Hash:
B1DEC26B69A7DD191451C29BCE83B74633293CE4

Download
http://thepiratebay.se/torrent/7087027/

Permalink

 


Friday, 3. February 2012
Ani-Shell v1.5 - Final
Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser etc! This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization

Download
http://sourceforge.net/projects/ani-shell/

login : lionaneesh
pass : lionaneesh

Permalink

 


Monday, 3. October 2011
killapache - PHP
How does above mentioned code works in killapache.

killapache sends GET requests with multiple “byte ranges” that will claim large portions of the system’s memory space. A “byte range” statement allows a browser to only load certain parts of a document, for example bytes 500 to 1000. It is normally used while downloading large files. This method is used by programs such as download clients to resume downloads that have been interrupted; it is designed to reduce bandwidth requirements. However, it appears that stating multiple unsorted components in the header can cause an Apache server to malfunction.

Download
http://pastebin.com/gWB76qmj

Permalink