{"id":17479,"date":"2021-08-19T18:00:00","date_gmt":"2021-08-19T12:30:00","guid":{"rendered":"https:\/\/kalilinuxtutorials.com\/?p=16079"},"modified":"2021-08-19T18:00:00","modified_gmt":"2021-08-19T12:30:00","slug":"bantam","status":"publish","type":"post","link":"https:\/\/kalilinuxtutorials.com\/bantam\/","title":{"rendered":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring End To End Encrypted Payload Streaming Designed To Bypass WAF, IDS, SIEM Systems"},"content":{"rendered":"\n<p><strong>Bantam<\/strong> is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication, and an advanced payload generation and obfuscation tool. Features end to end encryption with request unique encryption keys, and payload streaming designed to bypass WAF, IDS, SIEM systems. It incorporates several payload randomization and obfuscation techniques to help prevent detection when encryption is not possible. Bantam is an ideal tool for linux PHP post exploitation privesc making it a breeze to upload enumeration scripts. Bantam also has a plugin system making it easy to add scripts and features to the ui. It is programmed in C# and runs on windows, and Linux using wine.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-bssY9TzDbQ8\/YRiiO9JsvUI\/AAAAAAAAKeA\/QrgOPpWuTYszpGH9GcD-nSYYW7MlwC_lACLcBGAsYHQ\/s1141\/main.png\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-center has-vivid-green-cyan-background-color has-background\"><strong>Features<\/strong><\/p>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#end-to-end-request--response-encryption---encryption-flow\"><\/a><strong>End to end request &amp; response encryption &#8211;&nbsp;encryption flow<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>AES-256 bit encryption on request &amp; response data using openssl or mcrypt<\/li><li>Response encryption keys are newly generated and embedded into the request payload for every request making every response unique, preventing detection from WAF and IDS systems<\/li><li>Request encryption keys can be embedded using a pre-shared key\/iv, or use a pre-shared key with a randomly generated IV that is passed through a known request variable making every request signature unique<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#main-form---img\"><\/a><strong>Main form &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Get Shell Information &#8211;&nbsp;[img]<\/li><li>Add Shell &#8211;&nbsp;[img]<\/li><li>Eval tool &#8211; Opens a text editor that will eval the input text as a php payload<\/li><li>Remote port scanner &#8211; Uses the bantam server to scan remote ports<\/li><li>PHPInfo viewer &#8211; Opens the phpinfo page in an html window<\/li><li>Self Editor &#8211; Edit the Bantam code stored on the server<\/li><li>Linux &#8211; Helpful cmds and files. Dynamically included from&nbsp;settings.xml&nbsp;(passwd, ps aux, ifconfig, ..etc)<\/li><li>Wndows &#8211; Helpful cmds and files. Dynamically included from&nbsp;settings.xml&nbsp;(net user, hosts, ipconfig, ..etc)<\/li><li>Windows Screenshot Grabber &#8211; Grabs a screenshot of the current screen<\/li><li>Plugins &#8211; Dynamically include a php payload into the ui to be executed by setting up a plugin into the&nbsp;settings.xml<\/li><li>Reset connection &#8211; Removes the current shell and session info from ui, re-adds the shell and tests the connection<\/li><li>Update ping &#8211; Updates the ping to the selected shell<\/li><li>Edit settings &#8211; Opens the current shell settings into the ui to modify<\/li><li>Copy url &#8211; Copyies the shell url to the clipboard<\/li><li>Remove &#8211; Removes the shell from the ui<\/li><li>Save Shells to xml<\/li><li>Open Saved Shells from XML<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#reverse-shell---img\"><\/a><strong>Reverse Shell &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Spawns a reverse shell to the indicated IP\/Port<\/li><li>Methods supported &#8211; perl, netcat, netcat with pipe, telnet with pipe, php, bash, python, barrage(all)<\/li><li>Bypass disabled_functions &amp; open_basedir with&nbsp;chankro<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#backdoor-generator---img\"><\/a><strong>Backdoor generator &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Generates a php backdoor payload tailored for your settings<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#user-agent-switcher\"><\/a><strong>User Agent Switcher<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Randomize or customize the useragent used in requests<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#proxy-settings\"><\/a><strong>Proxy Settings<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Supports Socks and HTTP proxies<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#mass-execute\"><\/a><strong>Mass Execute<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Executes php payloads on all servers<\/li><li>Port Scanner &#8211; Distributed port scan that splits the work between selected servers and port scans a remote host &#8211;&nbsp;[img]<\/li><li>Plugins &#8211; Dynamically include a custom payload from the&nbsp;settings.xml&nbsp;into the gui to be mass executed<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#file-browser---img\"><\/a><strong>File Browser &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Transverses file directories, and saves directory tree during current session<\/li><li>Copy File<\/li><li>Read File Content<\/li><li>Delete file<\/li><li>Rename File<\/li><li>Upload File<ul><li>Vectors &#8211;&nbsp;LinEnum.sh&nbsp;\/&nbsp;LinuxPrivChecker.sh<\/li><\/ul><\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#console---img\"><\/a><strong>Console &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Send shell commands to the server using the vector selected in options form, saves history during current session<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#logs\"><\/a><strong>Logs<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Shows various logs and errors that could be generated by the application or server, adjustable verbosity in options form.<\/li><\/ul>\n\n\n\n<p class=\"has-light-green-cyan-background-color has-background\"><a href=\"https:\/\/github.com\/gellin\/bantam#options---img\"><\/a><strong>Options &#8211;&nbsp;[img]<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Logging<ul><li>Log level &#8211; Determines which logs will be shown, higher level will show more logs<\/li><li>Enable Global logs<\/li><\/ul><\/li><li>Request settings<ul><li>Max execution time &#8211; allows requests to run for max php execution time<\/li><li>Disable error logs &#8211; disables error logging for requests<\/li><li>Shell code vector &#8211; Shell code execution method (system\/exec\/shell_exec\/passthru\/popen\/backticks)<\/li><li>Timeout (milliseconds) &#8211; Default request timeout<\/li><li>Max Post size (KiB) &#8211; Default max post size<\/li><li>Max Cookie size (B) &#8211; Locked to 4096 bytes<\/li><\/ul><\/li><li>Request Obfuscation<ul><li>Inject Random Comments<ul><li>Injects comments with random text into the php payloads<\/li><li>Comment frequency &#8211; Determines how many locations to inject comments into<\/li><li>Max Length &#8211; Determines the max length of the comments<\/li><\/ul><\/li><li>Randomize PHP Var Names<ul><li>Randomizes variable names in php payloads, Always on<\/li><li>Max length &#8211; Determines the max length of the random php varnames<\/li><\/ul><\/li><\/ul><\/li><\/ul>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button is-style-outline is-style-outline--1\"><a class=\"wp-block-button__link has-vivid-cyan-blue-background-color has-background\" href=\"https:\/\/github.com\/gellin\/bantam\"><strong>Download<\/strong><\/a><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication, and an advanced payload generation and obfuscation tool. Features end to end encryption with request unique encryption keys, and payload streaming designed to bypass WAF, IDS, SIEM systems. It incorporates several payload randomization and obfuscation techniques to help prevent detection [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":16100,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png","fifu_image_alt":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring End To End Encrypted Payload Streaming Designed To Bypass WAF, IDS, SIEM Systems","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[28],"tags":[4025,4026,4027,1594,2441,4028,3103,3587],"class_list":["post-17479","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kali","tag-bantam","tag-end-to-end-encrypted","tag-generation-tool-c2","tag-ids","tag-payload","tag-php-backdoor","tag-siem","tag-waf"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring<\/title>\n<meta name=\"description\" content=\"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kalilinuxtutorials.com\/bantam\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring\" \/>\n<meta property=\"og:description\" content=\"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kalilinuxtutorials.com\/bantam\/\" \/>\n<meta property=\"og:site_name\" content=\"Kali Linux Tutorials\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-19T12:30:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png\" \/><meta property=\"og:image\" content=\"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1\" \/>\n\t<meta property=\"og:image:height\" content=\"1\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"R K\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:site\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"R K\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/\"},\"author\":{\"name\":\"R K\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\"},\"headline\":\"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring End To End Encrypted Payload Streaming Designed To Bypass WAF, IDS, SIEM Systems\",\"datePublished\":\"2021-08-19T12:30:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/\"},\"wordCount\":765,\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png\",\"keywords\":[\"Bantam\",\"End To End Encrypted\",\"Generation tool\/C2\",\"ids\",\"Payload\",\"PHP Backdoor\",\"siem\",\"waf\"],\"articleSection\":[\"Kali Linux\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/bantam\/\",\"name\":\"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png\",\"datePublished\":\"2021-08-19T12:30:00+00:00\",\"description\":\"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/bantam\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage\",\"url\":\"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png\",\"contentUrl\":\"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"name\":\"Kali Linux Tutorials\",\"description\":\"Kali Linux Tutorials\",\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\",\"name\":\"Kali Linux Tutorials\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"width\":272,\"height\":90,\"caption\":\"Kali Linux Tutorials\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/CyberEdition\",\"https:\/\/www.threads.com\/@cybersecurityedition\",\"https:\/\/www.linkedin.com\/company\/cyberedition\",\"https:\/\/www.instagram.com\/cybersecurityedition\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\",\"name\":\"R K\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"caption\":\"R K\"},\"url\":\"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring","description":"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kalilinuxtutorials.com\/bantam\/","og_locale":"en_US","og_type":"article","og_title":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring","og_description":"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload","og_url":"https:\/\/kalilinuxtutorials.com\/bantam\/","og_site_name":"Kali Linux Tutorials","article_published_time":"2021-08-19T12:30:00+00:00","og_image":[{"url":"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png","type":"","width":"","height":""},{"url":"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png","width":1,"height":1,"type":"image\/jpeg"}],"author":"R K","twitter_card":"summary_large_image","twitter_image":"https:\/\/1.bp.blogspot.com\/-og6ilAI8gr8\/YRimvkB0moI\/AAAAAAAAKeI\/jjwsRSHbG2oepD9fo3ZbPIFVaMhuJURDACLcBGAsYHQ\/s670\/download%2B%25282%2529.png","twitter_creator":"@CyberEdition","twitter_site":"@CyberEdition","twitter_misc":{"Written by":"R K","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kalilinuxtutorials.com\/bantam\/#article","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/bantam\/"},"author":{"name":"R K","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad"},"headline":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring End To End Encrypted Payload Streaming Designed To Bypass WAF, IDS, SIEM Systems","datePublished":"2021-08-19T12:30:00+00:00","mainEntityOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/bantam\/"},"wordCount":765,"publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png","keywords":["Bantam","End To End Encrypted","Generation tool\/C2","ids","Payload","PHP Backdoor","siem","waf"],"articleSection":["Kali Linux"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/kalilinuxtutorials.com\/bantam\/","url":"https:\/\/kalilinuxtutorials.com\/bantam\/","name":"Bantam : A PHP Backdoor Management And Generation tool\/C2 Featuring","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png","datePublished":"2021-08-19T12:30:00+00:00","description":"Bantam is an advanced PHP backdoor management tool, with a lightweight server footprint, multi-threaded communication and an advanced payload","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kalilinuxtutorials.com\/bantam\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/bantam\/#primaryimage","url":"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png","contentUrl":"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png"},{"@type":"WebSite","@id":"https:\/\/kalilinuxtutorials.com\/#website","url":"https:\/\/kalilinuxtutorials.com\/","name":"Kali Linux Tutorials","description":"Kali Linux Tutorials","publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/kalilinuxtutorials.com\/#organization","name":"Kali Linux Tutorials","url":"https:\/\/kalilinuxtutorials.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","width":272,"height":90,"caption":"Kali Linux Tutorials"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/CyberEdition","https:\/\/www.threads.com\/@cybersecurityedition","https:\/\/www.linkedin.com\/company\/cyberedition","https:\/\/www.instagram.com\/cybersecurityedition\/"]},{"@type":"Person","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad","name":"R K","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","caption":"R K"},"url":"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/"}]}},"jetpack_featured_media_url":"https:\/\/1.bp.blogspot.com\/-FPbOYyfs4o8\/XkHw0qWHwTI\/AAAAAAAAE4Y\/FYVpxnasMX4ahWO39bbE8cDxCceu62AmQCLcBGAsYHQ\/s1600\/FockCache%25281%2529.png","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":10838,"url":"https:\/\/kalilinuxtutorials.com\/atlas-2\/","url_meta":{"origin":17479,"position":0},"title":"Atlas : Quick SQLMap Tamper Suggester v1.0","author":"R K","date":"June 26, 2020","format":false,"excerpt":"Atlas is an open source tool that can suggest sqlmap tampers to bypass WAF\/IDS\/IPS, the tool is based on returned status code. Screenshot Installation $ git clone https:\/\/github.com\/m4ll0k\/Atlas.git atlas$ cd atlas$ python atlas.py # python3+ Usage $ python atlas.py --url http:\/\/site.com\/index.php?id=Price_ASC --payload=\"-1234 AND 4321=4321-- AAAA\" --random-agent -v injection point (with\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2972,"url":"https:\/\/kalilinuxtutorials.com\/atlas\/","url_meta":{"origin":17479,"position":1},"title":"Atlas &#8211; Quick SQLMap Tamper Suggester","author":"R K","date":"October 9, 2018","format":false,"excerpt":"Atlas is an open source tool that can suggest sqlmap tampers to bypass WAF\/IDS\/IPS, the tool is based on returned status code. Atlas Installation $ git clone https:\/\/github.com\/m4ll0k\/Atlas.git atlas $ cd atlas $ python atlas.py Also ReadDex2jar \u2013 Tools To Work With Android .dex & Java .class Files Usage $\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/10\/Atlas1.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/10\/Atlas1.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/10\/Atlas1.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/10\/Atlas1.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/10\/Atlas1.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":6167,"url":"https:\/\/kalilinuxtutorials.com\/absolutezero-python-apt-backdoor\/","url_meta":{"origin":17479,"position":2},"title":"AbsoluteZero : Python APT Backdoor","author":"R K","date":"August 12, 2019","format":false,"excerpt":"AbsoluteZero is a Python APT backdoor, optimised for Red Team Post Exploitation Tool, it can generate binary payload or pure python source. The final stub uses polymorphic encryption to give a first obfuscation layer to itself. Deployment AbsoluteZero is a complete software written in Python 2.7 and works both on\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":28246,"url":"https:\/\/kalilinuxtutorials.com\/villain\/","url_meta":{"origin":17479,"position":3},"title":"Villain : Windows And Linux Backdoor Generator And Multi-Session Handler","author":"R K","date":"January 30, 2023","format":false,"excerpt":"Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team. The main idea behind the payloads generated by this tool is inherited from HoaxShell. One could\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhJLlxDl9TvXjKKo3h3uSGxhKeTpuEEa9gnUmCO_MbL65UHOCctumnTPcFt24j4B_u9Qdf9Yp_6n_H0NZODXwGl-5o3DJio_y3TEoA5EDCzV6d38-rfmoa0GsW-uuqOh8cEIR2fb2ak3e0mlG6ZgpjMOO35-KfqYKVmKLafc1qlF26da84D5ec7UUdG\/s721\/Villan%281%29.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhJLlxDl9TvXjKKo3h3uSGxhKeTpuEEa9gnUmCO_MbL65UHOCctumnTPcFt24j4B_u9Qdf9Yp_6n_H0NZODXwGl-5o3DJio_y3TEoA5EDCzV6d38-rfmoa0GsW-uuqOh8cEIR2fb2ak3e0mlG6ZgpjMOO35-KfqYKVmKLafc1qlF26da84D5ec7UUdG\/s721\/Villan%281%29.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhJLlxDl9TvXjKKo3h3uSGxhKeTpuEEa9gnUmCO_MbL65UHOCctumnTPcFt24j4B_u9Qdf9Yp_6n_H0NZODXwGl-5o3DJio_y3TEoA5EDCzV6d38-rfmoa0GsW-uuqOh8cEIR2fb2ak3e0mlG6ZgpjMOO35-KfqYKVmKLafc1qlF26da84D5ec7UUdG\/s721\/Villan%281%29.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhJLlxDl9TvXjKKo3h3uSGxhKeTpuEEa9gnUmCO_MbL65UHOCctumnTPcFt24j4B_u9Qdf9Yp_6n_H0NZODXwGl-5o3DJio_y3TEoA5EDCzV6d38-rfmoa0GsW-uuqOh8cEIR2fb2ak3e0mlG6ZgpjMOO35-KfqYKVmKLafc1qlF26da84D5ec7UUdG\/s721\/Villan%281%29.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":7107,"url":"https:\/\/kalilinuxtutorials.com\/xorpass-encoder-bypass-waf-xor\/","url_meta":{"origin":17479,"position":4},"title":"XORpass : Encoder To Bypass WAF Filters Using XOR Operations","author":"R K","date":"October 30, 2019","format":false,"excerpt":"XORpass is an encoder to bypass WAF filters using XOR operations. Installation & Usage git clone https:\/\/github.com\/devploit\/XORpass cd XORpass $ php encode.php STRING $ php decode.php \"XORed STRING\" Example of bypass Using clear PHP function: Also Read - JSONBee : A Ready To Use JSONP Endpoints\/Payloads To Help Bypass Content\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":28809,"url":"https:\/\/kalilinuxtutorials.com\/waf-bypass\/","url_meta":{"origin":17479,"position":5},"title":"Waf-Bypass : Check Your WAF Before An Attacker Does","author":"R K","date":"April 18, 2023","format":false,"excerpt":"WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community. How to run\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh12wlzJD1k2kLGaYkJSMHhJPUTkaKg0awoM6WVFK93YWEq4bi_SohpHVYEwUO7ABALPFkBnZqrBtGfoJ_4uGhYQdvmv0FYbfD2VSoY6SnnQZianF3JDRR1pT-klbWpqEHiXWjqMZJb7EZyk8y5biAboJS7_6Yzs2O674m5tFNPX9byyuFB7i56x2gh\/s728\/kali%20temp%284%29.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh12wlzJD1k2kLGaYkJSMHhJPUTkaKg0awoM6WVFK93YWEq4bi_SohpHVYEwUO7ABALPFkBnZqrBtGfoJ_4uGhYQdvmv0FYbfD2VSoY6SnnQZianF3JDRR1pT-klbWpqEHiXWjqMZJb7EZyk8y5biAboJS7_6Yzs2O674m5tFNPX9byyuFB7i56x2gh\/s728\/kali%20temp%284%29.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh12wlzJD1k2kLGaYkJSMHhJPUTkaKg0awoM6WVFK93YWEq4bi_SohpHVYEwUO7ABALPFkBnZqrBtGfoJ_4uGhYQdvmv0FYbfD2VSoY6SnnQZianF3JDRR1pT-klbWpqEHiXWjqMZJb7EZyk8y5biAboJS7_6Yzs2O674m5tFNPX9byyuFB7i56x2gh\/s728\/kali%20temp%284%29.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh12wlzJD1k2kLGaYkJSMHhJPUTkaKg0awoM6WVFK93YWEq4bi_SohpHVYEwUO7ABALPFkBnZqrBtGfoJ_4uGhYQdvmv0FYbfD2VSoY6SnnQZianF3JDRR1pT-klbWpqEHiXWjqMZJb7EZyk8y5biAboJS7_6Yzs2O674m5tFNPX9byyuFB7i56x2gh\/s728\/kali%20temp%284%29.png?resize=700%2C400&ssl=1 2x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/17479","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/comments?post=17479"}],"version-history":[{"count":0,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/17479\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media\/16100"}],"wp:attachment":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media?parent=17479"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/categories?post=17479"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/tags?post=17479"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}