9.7. 持久化

9.7.1. Windows

• WinPwnage

9.7.2. WebShell连接工具

• 菜刀
• antSword

9.7.3. WebShell

• webshell
• PHP backdoors
• weevely3
• php bash - semi-interactive web shell
• Python RSA Encrypted Shell
• b374k - PHP WebShell Custom Tool

9.7.4. 后门

• pwnginx
• Apache backdoor
• SharpGen .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applications or libraries

9.7.5. 隐藏

• ProcessHider Post-exploitation tool for hiding processes from monitoring applications

9.7.6. 密码提取

• mimikatz
• sshLooter
• keychaindump

9.7.7. Linux提权

• linux exploit suggester
• LinEnum Scripted Local Linux Enumeration & Privilege Escalation Checks
• AutoLocalPrivilegeEscalation

9.7.8. Windows提权

• WindowsExploits
• GTFOBins Curated list of Unix binaries that can be exploited to bypass system security restrictions
• UACME Defeating Windows User Account Control

9.7.9. 提权

• BeRoot Privilege Escalation Project - Windows / Linux / Mac

9.7.10. UAC Bypass

• UAC Bypass In The Wild

9.7.11. RAT

• QuasarRAT

9.7.12. C2

• cobalt strike
• Empire
• pupy

9.7.13. 日志清除

• Log killer