Work in progress...
-
Updated
Apr 29, 2026 - PHP
Work in progress...
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
PHP shells that work on Linux OS, macOS, and Windows OS.
Vulnerable Banking Suite
Learn how to set up a fake authentication web page on a fake WiFi network.
PHP ransomware that encrypts your files, as well as file and directory names.
The Ultimate Ethical Hacking & Cyber Security Resource Hub 🚀 . A curated repository for security researchers, penetration testers, and students. This collection covers the full spectrum of cybersecurity—from computer architecture and networking fundamentals to advanced exploitation techniques. ⚡ Everything you need for Cyber Security in one place.
This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat or msvenom payload for further access to the target.
Secure website with a registration, sign in, session management, and CRUD controls.
Local PHP/MySQL e-wallet application combined with a hands-on cybersecurity demo lab. Implements user/admin auth, balances, transfers, CSRF protection, session timeouts, login lockout, and hashing. Includes a toggleable Vulnerable/Secure lab to demonstrate XSS and session hijacking with real code and mitigations.
simple code directory brute
هذا المشروع يحتوي على جميع الدروس والموارد لكورس تعلم الأمن السيبراني من إعداد Coder Shiyar. مناسب للمبتدئين ومن يريدون تحسين مهاراتهم في الأمن السيبراني، اختبار الاختراق، أمان الشبكات، وتقنيات الحماية الأخلاقية.
This is a powerful and stealthy PHP reverse shell designed for ethical hacking and penetration testing. It establishes a reliable and quiet connection back to your machine.
A lightweight, refined, CamPhish-inspired toolkit for stealth browser webcam capture, image storage, and seamless post-capture redirection. Educational, OSINT, and red team environment ready.
Web Shell Detector is a PHP script designed to identify PHP, CGI (Perl), ASP/ASPX shells. It uses a "web shells" signature database to detect shells with up to 99% accuracy. The tool features a lightweight and user-friendly interface built with modern JavaScript and CSS technologies.
Interactive SQL injection lab with real SQLite execution, 6 attack scenarios, CTF flags, and glassmorphic UI. Zero config — just PHP.
Learn about BypassServ Mini Shell, a sophisticated webshell tool designed for cybersecurity research and education. Discover its features, usage, and SEO tips for your WordPress site.
Fake Instagram Login is a simple project to demonstrate a fake login page for educational purposes. It mimics Instagram's login interface to raise awareness about phishing attacks and online security. Use it for learning and ethical security testing only. Not for malicious activities.
Refined PHP post-exploitation web shell for authorized red team engagements — separate Linux & Windows variants with OS-native recon and priv-esc, plus a build-time obfuscator and self-decrypting loader. Authorized testing only.
Add a description, image, and links to the ethical-hacking topic page so that developers can more easily learn about it.
To associate your repository with the ethical-hacking topic, visit your repo's landing page and select "manage topics."