SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Damn Vulnerable Web Application (DVWA)

This is a webshell open source project

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

SQLI labs to test error based, Blind boolean based, Time based.

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

A collection of PHP backdoors. For educational or testing purposes only.

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

PHP trading bot framework

收集一些小型实用的工具

Multi-language web CGI interfaces exploits.

PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!

complex webshell manager, quasi-http botnet.

Bug7sec Team - ransomware open source (web)

A lab for playing with NoSQL Injection

A PHP Based Tool That Helps You To Manage All Your Backdoored Websites Efficiently.

Simple Bash Rasomware for use in Cyber Exercises

A very slight PHP framework, very easy to use and integrate.

Basic Auth Phish page

XSS漏洞演练平台

艦娘所有一覧

Create a simple web shell: from a simple command injector to a very functional webshell arsenal

a basic and simple php webshell