Skip to content
/ php-hidden-webshell Public

Materials from the speech "How to protect yourself from hidden web shells"

1 star 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cyberok-org/php-hidden-webshell

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits

dev

dev

 
 

docker

docker

 
 

README.md

README.md

 
 

Repository files navigation

How to protect from fileless web shells

Materials from the speech "How to protect yourself from hidden web shells". Repository structure:

  • "dev/files" directory -- contains PHP extenstion source-code and shell-code extractor script
  • "dev/generate.sh" -- script for creating and building PHP extension
  • "docker/etc" directory -- contains PHP/httpd config files and web-shell POC
  • "docker/Dockerfile" -- file to create Docker image
  • "docker/main.sh" -- script to automate Docker image creation, run and test web-shell

Run this commands to do everything:

  • docker/main.sh build -- build docker image
  • docker/main.sh run -- run docker image
  • docker/main.sh inject -- inject code into web-server
  • docker/main.sh test -- use web-shell from harmless script

About

Materials from the speech "How to protect yourself from hidden web shells"

Topics

php-backdoor web-hacking php-webshell process-injection fileless

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages