ENNAENNA

pwncat vs Weevely

pwncat

๐Ÿ”ฅ Offensive Ops ยท Python

Weevely

๐Ÿ”ฅ Offensive Ops ยท Python

GitHub Stats

2.9k
Stars
3.5k
290
Forks
631
68
Issues
17
1y ago
Updated
6mo ago
MIT
License
GPL-3.0
Python
Language
Python

About pwncat

pwncat is a post-exploitation platform that wraps around a standard reverse or bind shell to provide additional functionality. It automatically enumerates the target, uploads tools, manages file transfers, installs persistence mechanisms, and attempts privilege escalation - all through a single shell session. pwncat supports both Linux and Windows targets and provides a module system for extensibility. It turns a dumb shell into a full post-exploitation environment.

About Weevely

Weevely generates small, polymorphic PHP backdoors that blend into legitimate application code. Once deployed, the client connects to the shell over HTTP/HTTPS and provides over 30 post-exploitation modules including file management, command execution, database access, network pivoting, privilege escalation, and credential stealing. Communications are obfuscated within normal-looking HTTP parameters, making detection difficult. Weevely supports SQL console access, TCP tunneling through the compromised host, bruteforce attacks from the target, and system information gathering. It acts as a full post-exploitation framework through a single PHP file.

Platform Support

๐Ÿงlinux๐ŸŽmacos
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Tags

Shared

post-exploitation

pwncat only

reverse-shellprivescpersistenceautomation

Weevely only

webshellphpbackdoorpivoting
View pwncat DetailsView Weevely Details