Hiphp, developed by Yasserbdj96, is an open-source tool designed to create a backdoor for controlling PHP-based websites.
It operates via HTTP/HTTPS protocols and leverages the POST/GET methods on port 80, enabling users to remotely manage their sites.
This tool offers functionalities such as file downloading, editing, and connecting to Tor networks for added security.
HIPHP_HOLE_CODE, into a PHP file on the target site. Once installed, users can execute commands remotely.Hiphp can be installed via Python’s package manager (PyPI) or directly from its GitHub/GitLab repositories. It also offers Docker support for containerized deployment.
For those who prefer not to install it permanently, Hiphp can run directly from its source files.
HIPHP_HOLE_CODE must be manually uploaded to the target website.config.ini file..onion sites.Hiphp is particularly useful for webmasters seeking full control over their hosting environments without relying on third-party tools. However, it must be used responsibly and ethically.
In summary, Hiphp is a powerful yet straightforward solution for managing PHP-based websites remotely while prioritizing security and flexibility.
On March 4, 2025, a group claiming to be the notorious threat actor BianLian began…
Blindsight is a red teaming tool designed to dump LSASS (Local Security Authority Subsystem Service)…
PowerShell-Hunter is a robust collection of PowerShell-based tools designed to aid security analysts in detecting…
DE-TH-Aura, an initiative by SecurityAura, focuses on enhancing detection engineering and threat hunting capabilities using…
MassVulScan is a powerful network scanning tool designed for pentesters and system administrators to identify…
The-XSS-Rat, an experienced ethical hacker, provides valuable insights into the world of cross-site scripting (XSS)…