wso.5.1.4.php This webshell have a proxy function that needs PHP Curl, that normaly is NOT installed in some servers, if you encounter the issue, just delete the function, it also have a watchshell function that emails the link of the webshell to the email in the code, edit it.

Rar Password : hackingtool

PHP Webshell with handy features.
Name :  b374k m1n1 1.01
version : 1.01
Note : this shell is encrypted when written.

Rar password : hackingtool

Andela1C3 v.3
Andela Yuwono Priv8 Shell

[Special Edition]

Maded by indonesian hackers.

login password : hackingtool

Alfa v4.1 php shell

This php shell made by Iranians is quite functional.

rar password : hackingtool

login : admin

password : ehsan

Summary

MARIJUANA web shell is backdoor build in PHP language with stealth mode that can bypass server security. Every functions has been encoded to hex for bypassing WAF.

Features

• NO RELOAD URL (JQUERY)
• BYPASS FORBIDDEN
• MULTIPLE UPLOAD (AUTO SUBMIT)
• UNZIP
• NON EMPTY DIR REMOVAL
• REQUESTS
• FILE DOWNLOAD
• RENAME
• BASE64 ENCODE DECODE (JQUERY)
• CHMOD
• CHANGE TIMESTAMP
• CREATE NEW FILE AND DIR

rar password : hackingtool

IndoSec shell

rar password : hackingtool

login password : IndoSec

IndoSec shell it is a new and useful application. it is a very current practice.

IndoXploit Webshell V.3

rar password : hackingtool

login password : IndoXploit

IndoXploit webshell V.3 is an PHP based webshell or backdoor with unique and usefull features. This webshell is originally coded by agussetyar from IndoXploit Coders Team. IndoXploit Shell has been mentioned repeatedly by the coder that it will make you easily bypass server security. With this shell you can comfortably bypass the server firewall from most secure servers. It is one of the hacker's most preferred backdoor shell.

Usage of indoxploit shell for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

ASPXspy2 shell

ASPXspy2 shell for windows servers, working only windows servers.

rar password : hackingtool

Description

rar password : hackingtool

webadmin.php is a simple Web-based file manager.

Deutsch, Français, Italiano, Netherlands, Svenska, Español, Dansk, Türkçe, Čeština, русский язык, Polski, English
Download

webadmin.php.gz (gzipped)
Requirements

    PHP ≥ 4.1.0

wso 4.2.5 shell

rar password : hackingtool
login password : admin

Wso Shell is a php shell that is used by many hackers, similar in design to indoxploit shell. The reason hackers prefer it is because it is stable, useful and powerful.

Features:

Sec. Info
File Manager
Console
Infect
SQL
PHP (eval)
Safe Mode
String Tools
Brute Force
Network

k2ll33d php Shell

rar password : hackingtool

k2ll33d.php shell is a very useful and fast php shell. Especially the config grabber section is very robust and allows you to easily pull configs from the server. it pulls the config information of hundreds of sites with one click, easily reads even forbidden configs from Filemanager.

Mini Shell

A Simple PHP Based Mini Web-Shell having common features like directory browser, command executor, uploader etc.
Note:

This Script is intended to be used for educational purposes only, no-one involved in the creation of this script may be held responsible for any illegal acts brought by anyone by using this script

Mini private and nonpriv web shell

rar password : hackingtool

b374k shell 3.2

rar password : hackingtool
login password : b374k

This PHP Shell is a useful tool for system or web administrator to do remote management without using cpanel, connecting using ssh, ftp etc. All actions take place within a web browser

Features :

    File manager (view, edit, rename, delete, upload, download, archiver, etc)
    Search file, file content, folder (also using regex)
    Command execution
    Script execution (php, perl, python, ruby, java, node.js, c)
    Give you shell via bind/reverse shell connect
    Simple packet crafter
    Connect to DBMS (mysql, mssql, oracle, sqlite, postgresql, and many more using ODBC or PDO)
    SQL Explorer
    Process list/Task manager
    Send mail with attachment (you can attach local file on server)
    String conversion
    All of that only in 1 file, no installation needed
    Support PHP > 4.3.3 and PHP 5

Requirements :

    PHP version > 4.3.3 and PHP 5
    As it using zepto.js v1.1.2, you need modern browser to use b374k shell. See browser support on zepto.js website http://zeptojs.com/
    Responsibility of what you do with this shell

C99Shell-PHP7
PHP 7 and safe-build Update of the popular C99 variant of PHP Shell.

c99shell.php v.2.0 (PHP 7) (25.02.2019) Updated by: KaizenLouie for PHP 7

rar password : hackingtool

About C99Shell
An excellent example of a web shell is the c99 variant, which is a PHP shell (most of them calls it malware) often uploaded to a vulnerable web application to give hackers an interface. The c99 shell lets the attacker take control of the processes of the Internet server, allowing him or her give commands on the server as the account under which the threat is operating. It lets the hacker upload, browse the file system, edit and view files, in addition, to deleting, moving them and changing permissions. Finding a c99 shell is an excellent way to identify a compromise on a system. The c99 shell is about 1500 lines long if packed and 4900+ if properly displayed, and some of its traits include showing security measures the web server may use, a file viewer that has permissions, a place where the attacker can operate custom PHP code (PHP malware c99 shell).

There are different variants of the c99 shell that are being used today. This github release is an example of a relatively recent one. It has many signatures that can be utilized to write protective countermeasures.

Shell from Russian programmers Grinay Go0o $ E and Isis.
Functions:
[~] Command execution
[~] File manager
[~] MD5-breaker
[~] Mysql dumper
[~] PHP eval ()

password : hackingtool

R57 shell is the most used php shell in the world. The R57 web shell has tools to scan the infected web server for other web shell installations, with the option to remove or overwrite them. WSO (web shell by orb) – Has the ability to be password protected with a login form, some variants can disguise as a fake HTTP error page.

The c99 shell is a somewhat infamous piece of PHP malware. C99 shell is commonly uploaded to a compromised internet application to supply an interface to an aggressor. The c99 covering permits an opponent to pirate the web server procedure, permitting the enemy to issue commands on the web server as the account under which PHP is running. The c99 covering allows an assailant to surf the filesystem, upload, sight, and edit documents in addition to action files, delete documents, and also change approvals, all as the internet server. Locating the c99 covering on your system is rather solid proof of a compromise.