FileGPS is a tool that uses various techniques to find the new filename, after the server-side script renamed and saved it.
When you upload a shell on a web-server using a file upload functionality, usually the file get renamed in various ways in order to prevent direct access to the file, RCE and file overwrite.
Some of the techniques used by fileGPS are:
Features
Also Read – EMAGNET : Leaked Databases With 97.1% Accurate To Grab Mail + Password
Installation
On ParrotOS:
sudo apt install filegps
On BlackArch Linux:
pacman -S filegps
On other distros:
git clone https://github.com/0blio/filegps
Writing a module is fairly simple and allows you to implement your custom ways of generating filename combinations.
Below is a template for your modules:
#!/usr/bin/env python
#-*- coding: utf-8 -*-
“””
Module name: test
Coded by: Your name / nickname
Version: X.X
Description:
This module destroy the world.
“””
output = []
#Do some computations here
output = [“filename1.php”, “filename2.asp”, “filename3.jar”]
The variables url and filename are automatically imported from the core script, so you can call them in your module.
Once you finished to write your module, you have to save it in Modules/, and it will be automatically imported once the main script is started.
You can use the module shame as a template for your modules.
Artificial Intelligence (AI) is changing how industries operate, automating processes, and driving new innovations. However,…
Image credit:pexels.com If you think back to the early days of personal computing, you probably…
In an era defined by technological innovation, the way people handle and understand money has…
The online world becomes more visually driven with every passing year. Images spread across websites,…
General Working of a Web Application Firewall (WAF) A Web Application Firewall (WAF) acts as…
How to Send POST Requests Using curl in Linux If you work with APIs, servers,…