Shell hunter for AF

Last update: May 13, 2022

Overview

AF-ShellHunter

AF-ShellHunter: Auto shell lookup

AF-ShellHunter its a script designed to automate the search of WebShell's in AF Team

How to


pip3 install -r requirements.txt
python3 shellhunter.py --help

Basic Usage

You can run shellhunter in two modes

--url -u When scanning a single url
--file -f Scanning multiple URLs at once

Example searching webshell with burpsuite proxy, hiding string "404" with a size between 100 and 1000 chars

┌──(blueudp㉿xxxxxxxx)-[~/AF-ShellHunter]
└─$ python3 shellhunter.py -u https://xxxxxxxxxx -hs "404" -p burp  --greater-than 100 --smaller-than 1000                                                                                             
Running AF-Team ShellHunt 1.1.0

        URL:    https://xxxxxxxxxx
        Showing only:   200, 302
        Threads:        20
        Not showing coincidence with:   404
        Proxy:  burp
        Greater than: 100
        Smaller than: 1000
Found https://xxxxxxxxxx/system.php len: 881

File configuration for multiple sites

phishing_list

# How to?
# set country block with [country], please read user_files/config.txt

# 'show-response-code "option1" "option2"' -> show responses with those status codes, as -sc
# 'show-string' -> show match with that string, as -ss
# 'show-regex' -> show match with regex, as -sr

# use 'not' for not showing X in above options, as -h[option]

# 'greater-than' -> Show response greater than X, as -gt ( --greater-than )
# 'smaller-than' ->  Show responses smaller than X, as -st ( --smaller-than )


# Example searching webshell with BurpSuite proxy. 302, 200 status code, not showing results w/ 'página en mantenimiento' with size between 100 and 1000 chars

[burp]
https://banco.phishing->show-response-code "302" "200", not show-string "página en mantenimiento", greater-than 100, smaller-than 1000

[noproxy]
banco.es-> # ShellHunt will add 'http://

Setting your proxies and custom headers

config.txt

[HEADERS]  # REQUESTS CUSTOM HEADERS, ADD 'OPTION: VALUE'
User-Agent? Mozilla/5.0 (Linux; Android 8.0.0; SM-G960F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.84 Mobile Safari/537.36
Referer? bit.ly/THIS_is_PHISHING  # Bypass referer protection

[PROXIES]
burp? https://127.0.0.1:8080,http://127.0.0.1:8080

Other features

Filter by regex
Filter by string
Filter by HTTP Status code
Filter by length
Custom Headers
Custom proxy or proxy block for URL file
Multithreading ( custom workers number )

                                                              .-"; ! ;"-.
        ----.                                               .'!  : | :  !`.
        "   _}                                             /\  ! : ! : !  /\
        "@   >                                            /\ |  ! :|: !  | /\
        |\   7                                           (  \ \ ; :!: ; / /  )
        / `--                                           ( `. \ | !:|:! | / .' )
            ,-------,****                               (`. \ \ \!:|:!/ / / .')
  ~        >o<  \---------o{___}-            =>          \ `.`.\ |!|! |/,'.' /
 /  |  \  /  ________/8'                                 `._`.\\\!!!// .'_.'
 |  |        /        "                                      `.`.\\|//.'.'
 |  /     |                                                   |`._`n'_.'|
                                                              "----^----"

You might also like...

Kubernetes shell: An integrated shell for working with the Kubernetes

kube-shell Kube-shell: An integrated shell for working with the Kubernetes CLI Under the hood kube-shell still calls kubectl. Kube-shell aims to provi

2.2k Jan 8, 2023

An advanced multi-threaded, multi-client python reverse shell for hacking linux systems. There's still more work to do so feel free to help out with the development. Disclaimer: This reverse shell should only be used in the lawful, remote administration of authorized systems. Accessing a computer network without authorization or permission is illegal.

PwnLnX An advanced multi-threaded, multi-client python reverse shell for hacking linux systems. There's still more work to do so feel free to help out

212 Dec 24, 2022

(BionicLambda Universal SHell) A simple shell made in Python. Docs and possible C port incoming.

blush 😳 (BionicLambda Universal SHell) A simple shell made in Python. Docs and possible C port incoming. Note: The Linux executables were made on Ubu

3 Jun 30, 2021

Bear-Shell is a shell based in the terminal or command prompt.

Bear-Shell is a shell based in the terminal or command prompt. You can navigate files, run python files, create files via the BearUtils text editor, and a lot more coming up!

6 Dec 25, 2021

Bear-Shell is a shell based in the terminal or command prompt.

Bear-Shell is a shell based in the terminal or command prompt. You can navigate files, run python files, create files via the BearUtils text editor, and a lot more coming up!

6 Dec 25, 2021

ICMP Reverse Shell written in Python 3 and with Scapy (backdoor/rev shell)

icmpdoor - ICMP Reverse Shell icmpdoor is an ICMP rev shell written in Python3 and scapy. Tested on Ubuntu 20.04, Debian 10 (Kali Linux), and Windows

206 Dec 29, 2022

iTerm2 Shell integration for Xonsh shell.

iTerm2 Shell Integration iTerm2 Shell integration for Xonsh shell. Installation To install use pip: xpip install xontrib-iterm2 # or: xpip install -U

6 Dec 29, 2022

Discord-shell - Reverse shell accessible via discord.py bot

Discord-shell reverse shell on discord bot. (STILL IN DEVELOPMENT) Installation

6 Oct 21, 2022

xonsh is a Python-powered, cross-platform, Unix-gazing shell

xonsh is a Python-powered, cross-platform, Unix-gazing shell language and command prompt.

6.7k Dec 31, 2022

adds flavor of interactive filtering to the traditional pipe concept of UNIX shell

percol __ ____ ___ ______________ / / / __ \/ _ \/ ___/ ___/ __ \/ / / /_/ / __/ / / /__/ /_/ / / / .__

3.2k Jan 7, 2023

Python library and shell utilities to monitor filesystem events.

Watchdog Python API and shell utilities to monitor file system events. Works on 3.6+. If you want to use Python 2.6, you should stick with watchdog

5.6k Jan 4, 2023

A pure Python script to easily get a reverse shell

easy-shell A pure Python script to easily get a reverse shell. How it works? After sending a request, it generates a payload with different commands a

48 Dec 12, 2022

A beautiful and useful prompt for your shell

A Powerline style prompt for your shell A beautiful and useful prompt generator for Bash, ZSH, Fish, and tcsh: Shows some important details about the

6k Jan 8, 2023

Generate MIPS reverse shell shellcodes easily !

MIPS-Reverse MIPS-Reverse is a tool that can generate shellcodes for the MIPS architecture that launches a reverse shell where you can specify the IP

29 Jul 27, 2021

Information about a signed UEFI Shell that can be used when Secure Boot is enabled.

SignedUEFIShell During our research of the BootHole vulnerability last year, we tried to find as many signed bootloaders as we could. We searched all

61 Jan 3, 2023

Shell scripts made simple 🐚

zxpy Shell scripts made simple 🐚 Inspired by Google's zx, but made much simpler and more accessible using Python. Rationale Bash is cool, and it's ex

492 Dec 27, 2022

xonsh is a Python-powered, cross-platform, Unix-gazing shell language and command prompt.

xonsh xonsh is a Python-powered, cross-platform, Unix-gazing shell language and command prompt. The language is a superset of Python 3.6+ with additio

6.7k Jan 8, 2023

Penelope Shell Handler

penelope Penelope is an advanced shell handler. Its main aim is to replace netcat as shell catcher during exploiting RCE vulnerabilities. It works on

293 Dec 30, 2022

Fetch is use to get information about anything on the shell using Wikipedia.

Fetch Search wikipedia article on command line [Why This?] [Support the Project] [Installation] [Configuration] Why this? Fetch helps you to quickly l

340 Dec 18, 2022

Comments

add animation?

    for c in itertools.cycle(['|', '/', '-', '\\']):
        if done:
            break
        sys.stdout.write('\rloading ' + c)
        sys.stdout.flush()
        time.sleep(0.1)
    sys.stdout.write('\rDone!     ')

add this to fuzzer?

enhancement

opened by blueudp 1

print stament failing

Carriage return char is generating problems in results stdout.

using multiple workers, multiple \r are printed in one line, so when you have to print w/ no \r....
bug

opened by blueudp 0

Parse phishing list

When using constructor for phishing list, load into variables as manual URL

	def __init__(self,URL, search_string, notsearch_string, regex, dont_regex, hidecode, showonly, usingProxy):
		self.URL = URL  # URL to scan
		self.search_string = search_string  # False or string to grep
		self.notsearch_string = notsearch_string  # False or string to inverse grep
		self.regex = regex  # False or regex to grep
		self.dont_regex = dont_regex # False or regex to inverse grep
		self.hidecode = hidecode # do not show this codes
		self.showonly = showonly  # show only http status code
		self.usingProxy = usingProxy  # False or COUNTRY to use, NOT proxy

	def __init__(self, config_object):  # overload, if using config object ( loaded phishing list )

		self.scan_config_list = config_object
		# asign all variables as normal

main_develop

opened by blueudp 0

Shell hunter for AF

Related tags

Overview

AF-ShellHunter

AF-ShellHunter: Auto shell lookup

How to

Basic Usage

File configuration for multiple sites

Setting your proxies and custom headers

Other features

You might also like...

Kubernetes shell: An integrated shell for working with the Kubernetes

(BionicLambda Universal SHell) A simple shell made in Python. Docs and possible C port incoming.

Bear-Shell is a shell based in the terminal or command prompt.

Bear-Shell is a shell based in the terminal or command prompt.

ICMP Reverse Shell written in Python 3 and with Scapy (backdoor/rev shell)

iTerm2 Shell integration for Xonsh shell.

Discord-shell - Reverse shell accessible via discord.py bot

xonsh is a Python-powered, cross-platform, Unix-gazing shell

adds flavor of interactive filtering to the traditional pipe concept of UNIX shell

Python library and shell utilities to monitor filesystem events.

A pure Python script to easily get a reverse shell

A beautiful and useful prompt for your shell

Generate MIPS reverse shell shellcodes easily !

Information about a signed UEFI Shell that can be used when Secure Boot is enabled.

Shell scripts made simple 🐚

xonsh is a Python-powered, cross-platform, Unix-gazing shell language and command prompt.

Penelope Shell Handler

Fetch is use to get information about anything on the shell using Wikipedia.

Comments

add animation?

print stament failing

Parse phishing list

Releases(1.0.0)

1.0.0(Sep 20, 2021)

1.0.1b(Sep 18, 2021)

Owner

Eduardo

DNSSEQ: PowerDNS with FALCON Signature Scheme

Yet another web fuzzer

IDA Python Script for anti ollvm

Virus-Builder - This tool will generate a virus that can only destroy Windows computer

Log4j2 CVE-2021-44228 revshell

Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228

Statistical Random Number Generator Attack Against The Kirchhoff-law-johnson-noise (Kljn) Secure Key Exchange Protocol

Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527) using standard Impacket.

Cisco RV110w UPnP stack overflow

Security system to prevent Shoulder Surfing Attacks

Advanced subdomain scanner, any domain hidden subdomains

A python module for retrieving and parsing WHOIS data

A proxy for asyncio.AbstractEventLoop for testing purposes

A security system to warn you when people enter your room 🎥

This tool help you to check if your Windows machine has hidden miner.

Keystroke logging, often referred to as keylogging or keyboard capturing

Argument Injection in Dragonfly Ruby Gem

CSAW 2021 writeups

Kunyu, more efficient corporate asset collection

Raphael is a vulnerability scanning tool based on Python3.