A, webshell management
1 , Chinese kitchen knife
Function: Suitable for php, asp, aspx and other scripting languages, is generally connected to the word upload the Trojan site, you can control some or all rights, many knives have the back door, with care. In general, however, it may be the IDS , the WAF , killing other scanning software, can be bypassed by various encoding go.
2 , ants sword ( antSword )
Function: webshell management, open source cross-platform web site management tools, with a kitchen knife similar.
Download: https://github.com/AntSwordProject/AntSword-Loader
3 , the ice scorpion ( Behinder )
Function: The byte-code encoded / encrypted transmission on the network, it is difficult rules detected.
Principle: After decryption server, use java.lang.ClassLoader of defineClass method to restore. In achieving, clever use of the equals ( Object ) to accept the parameters, the equals method takes a single argument, as long as the transfer pageContext into, can indirectly obtain the Request , the Response , Seesion objects such as HttpServletRequest request = (HttpServletRequest) pageContext.getRequest ( );
4、weevely
Function: http header encoded transmission hidden-type terminal phpwebshell
manual:
1 ) generating server generates [Trojan coded]
weevely generate <password> <path>
2) to the server
Transfer scp command relies on ssh protocol
3) connection
weevely <url> <passwd>