[Backdoor] B374K - webshell PHP functions
Assalamu'alaikum Am LeeT_Defacer
this shell is like the other webshell line is pretty useful tool for admins to perform remote management without having touched or ssh cpanel ... All tasks are executed in the browser.
The difference is that this shell to accompany the author wrote a small packer to allow users to customize as you wish. And because it is open source so it can take control of the "extras" that the shell on the network or sending.
Function :
- File management (view, edit, delete, rename, upload, download, extract, etc)
- Search for files, content files, folders ... (support regular expression regex)
- Execute command Execute scripts (php, perl, python, ruby, java, Node.js, c)
- Tạo bind/reverse shell,back connect..
- Supports packet crafter (simulated packets, like scapy, ncat ..)
- Interface connected DBMS (MySQL, MSSQL, Oracle, SQLite, PostgreSQL, and the DBMS using ODBC or PDO)
- SQL Explorer Process list/Task manager
- Send email with attachments (can attach files on the server)
- Convert string
- Just one file, up and running, without installation
- Support PHP > 4.3.3 và PHP 5.
Request :
- PHP version > 4.3.3 và PHP 5
- Shell user interface zepto.js v1.1.2, so the best display on the new browsers. See a list of supported browsers zepto.js in http://zeptojs.com/
- All responsibilities when using shell
Installation :
Access the link at the end to follow the project's Git authors. In projects of this git was used to generate the webshell packer.
Clone projects, then use the command line interface to conduct web generate shell
README
$ php -f index.php
b374k shell packer 0.4
b374k shell packer 0.4
options :
-o filename save as filename
-p password protect with password
-t theme theme to use
-m modules modules to pack separated by comma
-s strip comments and whitespaces
-b encode with base64
-z [no|gzdeflate|gzencode|gzcompress] compression (use only with -b)
-c [0-9] level of compression
-l list available modules
-k list available themes
-o filename save as filename
-p password protect with password
-t theme theme to use
-m modules modules to pack separated by comma
-s strip comments and whitespaces
-b encode with base64
-z [no|gzdeflate|gzencode|gzcompress] compression (use only with -b)
-c [0-9] level of compression
-l list available modules
-k list available themes
For example :
$ php -f index.php -- -o myShell.php -p myPassword -s -b -z gzcompress -c 9
Note: In Project git just shell packer, if using the browser to access the index.php file will become a shell without a password, be careful when using on the server.
Github:
https://github.com/b374k/b374k
![[Sql injection] Fresh Site List For SqL Injection Attacks Part 1](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgi1jCIqh1B3h19m_FT7kvmuRmd2K7zFH0Tq5ERWY_5WePn9BQ4yJNETeIdBkfdIwPu-_WqI3AWjxAifEYw6q1af23CZt23Dt_yMoMsR3Ix4At72VAtRzntHW6D8gqbf5RGfNjnZya2ALFY/s72-c/sql-injection.png)
![[Backdoor] B374K - webshell PHP functions](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxzw9r2RlOpz9eczYAADEmzwKPdNUsCjKZdmTXue7v8zoMnmaYWvDw_-znBakirD6g-IQ3VxvHhpQwM7Ut-HH-umsoAZYTYuNixL_qEiUuy2PcTneW9RZaNcBYE8WYJda7_x3JWu5V0tlw/s72-c/b374k+copy.jpg)
![[Defaced Sites] 41 Website GoT Hacked By TeaM LeeT SpideRs](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiTlHmq5f2rQSfV6kSgYg5cLT4ZNqvyledI5pfC2bXvis6TxjT8SUReJ9zf2bZMAKTkkT4dd9l2jQH-gt9hqToo_Q146QrgRReHwN4-l4FyBWazslSuoXfvi_ap_ywInHkoos_oxrilfzr_/s72-c/hacked.JPG)
thanks a lot sir. I have enjoyed your explained.
ReplyDelete