Quote:
Originally Posted by docputer
The keywords are “eval” and “base64_decode.”
|
Those are just shell parameters that can be changed at any time. Wouldn't call those keywords for detection, rather the chars infront, which looks like they found a regexp and escaped from it (%&(%7B$%7B).