epotseluevskaya / ASPX_WebShell_COFFLoader

Public

ASPX Web Shell with COFF Loader

69% credibility

Found Mar 07, 2026 at 80 stars -- GitGems finds repos before they trend. Get early access to the next one.

AI Analysis

ASP.NET

AI Summary

This tool lets authorized security testers run small diagnostic helpers on a web server using a simple interactive controller.

How It Works

🔍 Find the security testing tool

You come across this handy kit while looking for ways to check the security of servers you own or have permission to test.

🛠️ Gather your check helpers

Collect small ready-made helpers that perform specific checks, like finding out who is using the server.

📤 Add the runner page to your server

Place a simple runner page on your test server so it can handle the checks you want to run.

💻 Start the easy controller

Launch the straightforward controller program on your computer and point it to your server's runner page.

🎯 Pick and launch a check

Browse the list of available helpers, choose one like 'whoami', send it off, and get instant results back.

✅ See your server details

You receive clear output showing server user info or other insights, all done safely from afar without extra hassle.

Sign up to see the full architecture

4 more

Star Growth

See how this repo grew from 80 to 80 stars Sign Up Free

Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose

AI-Generated Review

What is ASPX_WebShell_COFFLoader?

This ASP.NET project delivers a simple ASPX webshell for IIS servers that loads and runs Beacon Object Files (BOFs) remotely. You drop the ASPX file on a compromised ASPX website, then use its Python client to execute precompiled BOFs—like whoami or situational awareness tools—passing arguments via format strings (b/i/s/z/Z). It solves the pain of limited post-exploitation on Windows web servers by bridging webshells to advanced COFF payloads without needing a full reverse shell.

Why is it gaining traction?

Unlike basic aspx webshell github one-liners or file managers, this adds a COFF loader inspired by TrustedSec, letting you run x64 BOFs interactively from a CLI with list and exec commands. Pentesters notice the semi-interactive flow: scan beacons in /usr/share/beacons, pack args on-the-fly, and get formatted output like SID dumps. In the aspx webshell pentestmonkey crowd, it stands out for handling ASPX webforms without PowerShell dependencies.

Who should use this?

Red team operators targeting ASP.NET sites during authorized pentests, especially when stuck with webshell access but needing BOF-level recon. Security researchers testing IIS app pools or aspx web config exploits. Avoid if you're not compiling BOFs from TrustedSec repos—it's for ops folks chaining aspx tunnel github tools.

Verdict

Grab it for niche IIS pentests if you have BOFs ready; 79 stars and solid README make it usable, but the 0.699999988079071% credibility score flags its early maturity—test in labs first. Solid for aspx webshells github enthusiasts, less so for production defenders.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.

Stars

Forks

Followers

Base stars: 80 stars

Penalty: Very new repo (2d): -70%

Penalty: AI uncertain (70%): -90%

Account age: 110 days

Repo age: 2 days

Updated: Mar 07, 2026