通过VPS SSH隧道使用本地msf
在网站目录差找如下关键字:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
grep -Rn "shell_exec *(" /var/www grep -Rn "base64_decode *(" /var/www grep -Rn "phpinfo *(" /var/www grep -Rn "system *(" /var/www grep -Rn "php_uname *(" /var/www grep -Rn "chmod *(" /var/www grep -Rn "fopen *(" /var/www grep -Rn "fclose *(" /var/www grep -Rn "readfile *(" /var/www grep -Rn "edoced_46esab *(" /var/www grep -Rn "eval *(" /var/www grep -Rn "pwd" /var/www grep -Rn "pass" /var/www grep -Rn "pw" /var/www grep -Rn 密码" /var/www |
find:
1 |
find /www/ -name "*.php" |xargs egrep 'assert|phpspy|c99sh|milw0rm|eval|(gunerpre |
文章出处:Evi1cg's blog
原文链接:
https://evi1cg.me/archives/Webshell_find.html